[04:35.980 --> 04:54.520]  A little pause... and we are back.
[04:54.520 --> 04:56.300]  A little pause... and we are back.
[14:26.290 --> 14:27.930]  A little pause... and we are back.
[15:56.360 --> 15:57.780]  A little pause... and we are back.
[26:02.690 --> 26:15.050]  A little pause... and we are back.
[27:38.920 --> 33:41.780]  A little pause... and we are back.
[34:33.570 --> 34:33.770]  A little pause... and we are back.
[01:00:22.490 --> 01:00:26.710]  Welcome to Space Security Challenge 2020, HackASAP.
[01:00:26.710 --> 01:00:28.750]  The final event.
[01:00:28.770 --> 01:00:33.910]  As the democratization of space opens up a new frontier for exploration and innovation,
[01:00:33.910 --> 01:00:37.570]  we see new cybersecurity vulnerabilities emerging.
[01:00:38.530 --> 01:00:43.350]  The Space Security Challenge is designed to inspire the world's top cybersecurity talent
[01:00:43.350 --> 01:00:48.790]  to develop the skills necessary to secure this last frontier of cybersecurity.
[01:00:48.970 --> 01:00:50.270]  Space.
[01:00:50.410 --> 01:00:52.990]  And already we've made a ton of progress.
[01:00:53.250 --> 01:00:54.690]  I'll catch you up.
[01:00:54.690 --> 01:00:59.370]  This spring, we hosted over 2,000 teams who worked their way through a set of foundational
[01:00:59.370 --> 01:01:04.310]  space cybersecurity challenges in our HackASAP qualification round.
[01:01:04.330 --> 01:01:08.710]  Now, eight finalist teams are stepping up to the ultimate challenge.
[01:01:08.930 --> 01:01:11.830]  They are hacking a satellite.
[01:01:19.330 --> 01:01:23.310]  Welcome to Space Security Challenge 2020, or HackASAP.
[01:01:23.310 --> 01:01:27.150]  I'm your host, Jordan Wines, and I'm very excited to be with you today.
[01:01:27.150 --> 01:01:32.430]  I'm here in Melbourne, Florida, at HackASAP HQ, where eight satellites are spinning out
[01:01:32.430 --> 01:01:39.630]  of control as the teams do their best to restore functionality, all for a piece of a $100,000
[01:01:39.630 --> 01:01:41.010]  prize pool.
[01:01:41.130 --> 01:01:45.590]  These teams, from 11 different countries around the world, include not only some that are
[01:01:45.590 --> 01:01:51.130]  very familiar to those of us from the Capture the Flag, or CTF, community, but also include
[01:01:51.130 --> 01:01:55.330]  many newcomers who assembled just to answer the call for HackASAP.
[01:01:55.330 --> 01:01:56.850]  Let's meet our teams.
[01:02:37.920 --> 01:02:43.680]  To get to this final event, individuals on these eight teams had to beat out over 6,000
[01:02:43.680 --> 01:02:46.220]  other competitors for a coveted invitation.
[01:02:46.220 --> 01:02:51.380]  This required mastery not only in traditional CTF hacking skills, like reverse engineering,
[01:02:51.380 --> 01:02:56.620]  and vulnerability research, but also in areas new to the CTF community, including orbital
[01:02:56.620 --> 01:03:02.360]  mechanics, astrophysics, space-based communication systems, and many others.
[01:03:02.360 --> 01:03:07.680]  Today and tomorrow, each of our eight teams will race the others through a series of challenges
[01:03:07.680 --> 01:03:10.560]  to regain control over their Flatsat.
[01:03:10.560 --> 01:03:17.740]  If you've followed our story at hackasat.com and launch.com.com, you might know that through
[01:03:17.740 --> 01:03:23.500]  some bad code and poor business choices, our defunct launch.com company has accidentally
[01:03:23.500 --> 01:03:28.840]  triggered a satellite intended for the year 2000 to be launched in 2020 with no one in
[01:03:28.840 --> 01:03:29.740]  control.
[01:03:29.740 --> 01:03:34.360]  In our fictional storyline, this satellite has been co-opted by nefarious forces, and
[01:03:34.360 --> 01:03:38.100]  it's up to our competitors to regain control over the many components.
[01:03:38.100 --> 01:03:43.780]  Since qualifying, each team was shipped a physical Flatsat, and these Flatsats are not
[01:03:43.780 --> 01:03:48.460]  only prizes for their qualifying performance, but also allow the teams to become familiar
[01:03:48.460 --> 01:03:52.100]  with the hardware and software before this final event.
[01:03:52.100 --> 01:03:55.120]  So what's the difference between a satellite and a Flatsat?
[01:03:55.120 --> 01:03:59.540]  Think of a Flatsat as a bench version for testing components of an actual satellite
[01:03:59.540 --> 01:04:03.840]  without necessarily being exactly what you would send into space.
[01:04:03.840 --> 01:04:09.500]  The satellites you can watch in our live webcams are Flatsats, but don't worry, not
[01:04:09.500 --> 01:04:12.740]  all of the competition this weekend will be terrestrial.
[01:04:13.000 --> 01:04:17.260]  The game has actually been underway for one hour now, and our team's first challenge
[01:04:17.260 --> 01:04:21.780]  has been to regain control of the ground station that they'll be using to communicate with
[01:04:21.780 --> 01:04:23.120]  their Flatsats.
[01:04:23.120 --> 01:04:26.960]  Being good hackers, of course, we call this Challenge Zero.
[01:04:27.780 --> 01:04:29.060]  Challenge Zero.
[01:04:30.140 --> 01:04:35.420]  Here's what we know. An adversary has obtained access to the satellite's ground station.
[01:04:35.420 --> 01:04:38.400]  Once they obtained access, they kicked us out.
[01:04:38.620 --> 01:04:43.060]  The challenge? Teams must obtain network access to the ground station.
[01:04:49.980 --> 01:04:55.120]  This is called Challenge Zero because it's required for the teams to even kick the game off.
[01:04:55.700 --> 01:05:00.240]  While most of our challenges will have teams focusing on components that are inside of
[01:05:00.240 --> 01:05:05.140]  their Flatsats, Challenge Zero is all about gaining access to the ground station that
[01:05:05.140 --> 01:05:07.920]  they'll be using to communicate with their Flatsat.
[01:05:08.040 --> 01:05:12.120]  And again, this is not a simulation. All of these eight Flatsats may be here on Earth,
[01:05:12.120 --> 01:05:16.960]  but they're completely untethered, floating on a cushion of air, and each one being connected
[01:05:16.960 --> 01:05:19.440]  wirelessly from a separate radio link.
[01:05:19.680 --> 01:05:24.180]  In the first hour of gameplay, teams have been getting their bearings and working on
[01:05:24.180 --> 01:05:29.180]  solving Challenge Zero. In fact, just before this broadcast went live, we received word
[01:05:29.180 --> 01:05:34.660]  that this challenge was actually solved by Team Samurai. Congratulations to them.
[01:05:34.660 --> 01:05:38.320]  Let's go ahead and see a little bit more about Team Samurai.
[01:06:07.720 --> 01:06:12.920]  Team Samurai is a mainstay in the CTF community. In fact, one of the fun facts about this community
[01:06:12.920 --> 01:06:18.040]  is that I've competed against Samurai about as many times as I've actually competed with them.
[01:06:18.040 --> 01:06:22.200]  This community is tight-knit, people move around between them, and it's good to see them jump
[01:06:22.200 --> 01:06:24.980]  into the lead and take a start on the scoreboard.
[01:06:24.980 --> 01:06:28.620]  They're now going to be focusing on Challenge One, which we're going to give you a little
[01:06:28.620 --> 01:06:31.020]  bit of a hint on what that entails now.
[01:06:43.160 --> 01:06:47.560]  The Challenge. Teams must regain communication with a satellite.
[01:06:57.790 --> 01:07:03.070]  While this event was originally planned to be in-person during DEF CON in the Aerospace
[01:07:03.070 --> 01:07:07.830]  Village, thanks to the tireless efforts of dozens of people involved behind the scenes,
[01:07:07.830 --> 01:07:10.910]  we're instead streaming to you live throughout the event.
[01:07:10.910 --> 01:07:14.990]  Not only has the game itself been adapted to allow for remote participation from our
[01:07:14.990 --> 01:07:19.890]  eight teams over VPN, but the spectator experience has changed as well.
[01:07:19.890 --> 01:07:23.450]  There are many different ways you can now experience HackASAT.
[01:07:23.510 --> 01:07:29.430]  For a simpler interface, just visit hackasat.com with a web-based scoreboard, these periodic
[01:07:29.430 --> 01:07:33.130]  live updates streamed right in center, and links to other resources.
[01:07:33.210 --> 01:07:38.270]  For a more immersive experience, head over to virtual.hackasat.com, where you can get
[01:07:38.270 --> 01:07:43.230]  all of the above and more, including watching our satellites live via one of four dedicated
[01:07:43.230 --> 01:07:48.770]  webcam feeds, get more technical game data from the 3D Octagon scoreboard, as well as
[01:07:48.770 --> 01:07:53.370]  many other resources about our competitors, the flatsats, the technologies involved in
[01:07:53.370 --> 01:07:57.690]  space, and even communicate with other viewers in a dedicated chat and have a few social
[01:07:57.690 --> 01:07:58.690]  interactions.
[01:07:58.930 --> 01:08:02.890]  No need to remember all that just now though, all you have to remember is that you can find
[01:08:02.890 --> 01:08:07.530]  it all on hackasat.com and virtual.hackasat.com.
[01:08:07.530 --> 01:08:11.890]  The HackASAT team is also partnering with the Aerospace Village, one of the many villages
[01:08:11.890 --> 01:08:14.630]  you'd normally get to experience in person at DEF CON.
[01:08:14.630 --> 01:08:19.230]  After 15 years of attendance, I know I'm not the only one missing many of my friends
[01:08:19.230 --> 01:08:21.290]  and our hallway conversations at DEF CON.
[01:08:21.650 --> 01:08:25.010]  Hopefully, we can recreate a little bit of that experience here.
[01:08:25.470 --> 01:08:29.550]  In addition to all of that we have going on at HackASAT, make sure you check out the rest
[01:08:29.550 --> 01:08:33.530]  of what DEF CON, the Aerospace Village, and our friends over at Defense Digital Service
[01:08:33.530 --> 01:08:34.910]  are doing this weekend.
[01:08:34.910 --> 01:08:38.790]  And hope to see you back here as we check in on how our teams are doing and hear more
[01:08:38.790 --> 01:08:43.990]  about the vision behind HackASAT at our next update at 11 a.m. Pacific, 2 p.m. Eastern.
[01:18:52.480 --> 01:20:39.370]  Thanks for watching.
[02:01:46.900 --> 02:01:53.080]  And I hope to see you back here at 11 a.m. Pacific, 2 p.m. Eastern.
[02:10:15.680 --> 02:10:16.200]  Thanks for watching.
[02:10:16.200 --> 02:22:21.140]  And I hope to see you back here at 11 a.m. Pacific, 2 p.m. Eastern.
[02:46:43.720 --> 02:46:46.000]  Thanks for watching.
[02:46:46.000 --> 02:48:42.560]  And I hope to see you back here at 11 a.m. Pacific, 2 p.m. Eastern.
[02:48:42.560 --> 02:48:44.120]  And I hope to see you back here at 11 a.m. Pacific, 2 p.m. Eastern.
[03:39:29.920 --> 03:39:30.020]  Thanks for watching.
[03:43:09.400 --> 03:56:22.240]  And I hope to see you back here at 11 a.m. Pacific, 2 p.m. Eastern.
[04:00:29.070 --> 04:00:29.710]  Thanks for watching.
[04:00:29.710 --> 04:00:33.150]  Welcome back to HackASAT. I'm your host, Jordan Wines.
[04:00:33.150 --> 04:00:40.030]  Right after our last update ended with only a samurai solve, several other teams came in with solutions for Challenge Zero.
[04:00:40.170 --> 04:00:44.890]  PFS and SolarWine were solvers two and three on that challenge.
[04:00:46.890 --> 04:00:51.590]  Let's go ahead and take a look at those two teams and see what we know about them.
[04:01:50.550 --> 04:01:57.110]  I particularly enjoy the contrast between these two teams that joined samurai at the top of the leaderboard earlier today.
[04:01:57.170 --> 04:02:03.650]  SolarWine has decidedly not from a CTF background, whereas PFS definitely has a strong background in the CTF community.
[04:02:03.650 --> 04:02:09.090]  In fact, I only found out after they'd already qualified that I actually knew some of those members of that team.
[04:02:09.090 --> 04:02:15.810]  After those two teams scored on Challenge Zero, every other team was eventually able to solve Challenge Zero over the next several hours,
[04:02:15.810 --> 04:02:19.850]  though you'll notice on the scoreboard that some of them received less points.
[04:02:20.490 --> 04:02:23.870]  This is because each challenge has a degradation period.
[04:02:23.870 --> 04:02:29.570]  This means that for 30 minutes after the first solve, all other teams have a chance to score for full points,
[04:02:29.570 --> 04:02:34.450]  but after that, they only have an additional two hours to solve that particular challenge.
[04:02:34.450 --> 04:02:39.410]  During the two-hour period, the points available for that challenge slowly go to zero.
[04:02:39.510 --> 04:02:42.670]  While it puts the pressure on our teams to stay up with their peers,
[04:02:42.670 --> 04:02:47.710]  it means that no one can get stuck on a single challenge that leaves them behind for the entire event.
[04:02:47.790 --> 04:02:54.410]  At the end of that two-and-a-half-hour period, we give all teams our solution, though of course those old points are gone forever.
[04:02:54.650 --> 04:02:57.690]  This is primarily a facet of being a serial CTF.
[04:02:57.690 --> 04:03:00.970]  In many CTFs, challenges can be solved in parallel,
[04:03:00.970 --> 04:03:05.670]  so this was an attempt to keep the game going even if you get stuck on one challenge.
[04:03:06.090 --> 04:03:11.190]  Of course, one concern was that this would unfairly punish some teams in different time zones.
[04:03:11.190 --> 04:03:15.430]  Thankfully, we are only running the satellites for nine hours of gameplay each day,
[04:03:15.430 --> 04:03:21.190]  and it lines up fairly well with hacker standard time, anywhere from 4 p.m. to 1 a.m., depending on the team.
[04:03:21.590 --> 04:03:28.730]  One advantage of this particular scheme of point degradation is that we can explain in detail the solution for challenges that have expired.
[04:03:28.730 --> 04:03:31.590]  Here's our official explainer for Challenge Zero.
[04:03:32.770 --> 04:03:33.850]  Challenge Zero
[04:03:35.250 --> 04:03:41.750]  Here's what we know. An attacker has obtained access to the satellite's ground station through an internet-facing website.
[04:03:41.750 --> 04:03:44.550]  Once they obtained access, they kicked us out.
[04:03:44.550 --> 04:03:48.970]  The challenge? Teams must regain network access to the ground station.
[04:03:49.050 --> 04:03:50.530]  Here's how they do it.
[04:03:50.530 --> 04:03:54.830]  An internet-facing website exists on the same subnet as the ground station.
[04:03:54.830 --> 04:03:58.450]  Teams must identify and exploit a vulnerability in the web server,
[04:03:58.450 --> 04:04:03.290]  then use it as a foothold within the network to pivot to the ground station and gain access.
[04:04:08.320 --> 04:04:14.240]  So for Challenge Zero, teams first had to extract a key from the Ruby web service used to generate sessions.
[04:04:14.240 --> 04:04:17.740]  Then they used that to forge credentials to the service as an admin user.
[04:04:17.820 --> 04:04:22.720]  Finally, the admin page, they could actually find a piece of it where they could execute shell commands.
[04:04:22.720 --> 04:04:26.160]  They were sued, and there were some other intricacies they had to figure out.
[04:04:26.160 --> 04:04:30.680]  But eventually, they got a shell in the box, or they got access to an SSH key on that box,
[04:04:30.680 --> 04:04:34.780]  and that ultimately gave them connections to their Cosmos ground station.
[04:04:34.940 --> 04:04:40.000]  This is the machine that they would be using for the rest of the event to control their particular flatsats.
[04:04:40.440 --> 04:04:44.860]  They issue commands through the Cosmos server, goes over the RF link to their satellites.
[04:04:45.260 --> 04:04:48.840]  While Samurai had a head start with access to their server first,
[04:04:48.840 --> 04:04:53.220]  PFS was able to take the lead about an hour ago by solving Challenge One.
[04:04:53.220 --> 04:04:58.720]  As a reminder, the goal of Challenge One is to re-establish better communications with their flatsat,
[04:04:58.720 --> 04:05:03.240]  and we'll learn more about how they solved that once all teams have solved that challenge.
[04:05:03.300 --> 04:05:09.720]  Not to be up done, Poland Cannon to Space followed shortly thereafter, bringing them neck and neck for first and second.
[04:05:09.820 --> 04:05:14.860]  Poland Cannon to Space is actually a conglomeration of two teams, P4 and Dragon Sector.
[04:05:46.140 --> 04:05:50.880]  Both Dragon Sector and P4 are very recognizable names in the CTF community,
[04:05:50.880 --> 04:05:57.260]  with Dragon Sector having a pretty good claim maybe at one of the all-time winningest CTF teams, if not the most.
[04:05:57.720 --> 04:06:01.400]  And of course, P4 has done very, very well, especially this year in the competition.
[04:06:01.980 --> 04:06:06.420]  And of course, their team name itself is a reference to a funny webcomic that you should Google if you haven't seen it.
[04:06:06.420 --> 04:06:08.000]  It even has its own video game.
[04:06:08.240 --> 04:06:12.220]  If you're interested in some more of the history of these teams that have played CTFs before,
[04:06:12.220 --> 04:06:17.820]  make sure to check out ctftime.org, a website that actually tracks teams' performance across different events,
[04:06:17.820 --> 04:06:21.560]  and has a global yearly ranking system that's hotly contested.
[04:06:22.100 --> 04:06:25.200]  That's all for our next game update, but it's been a busy one.
[04:06:25.780 --> 04:06:29.740]  Next, HackASAT has been the work of many different organizations coming together,
[04:06:29.740 --> 04:06:34.280]  but the primary vision has come from two individuals that we wanted to let you hear from directly.
[04:06:34.320 --> 04:06:39.960]  They are Dr. Will Roper, Assistant Secretary for Acquisition Technology and Logistics, Department of the Air Force,
[04:06:39.960 --> 04:06:45.340]  and Mr. Brett Goldstein, Leader of the Rebel Alliance at the Pentagon, Director of Defense Digital Service.
[04:06:46.080 --> 04:06:50.740]  And they're joined by our intrepid interviewer, Roro, who will be asking them the hard-hitting questions
[04:06:50.740 --> 04:06:54.560]  in a segment we're calling Between Two Nerds.
[04:07:07.800 --> 04:07:14.960]  Welcome to Between Two Nerds. My name is Brett Goldstein. I'm the Director of the Defense Digital Service.
[04:07:15.260 --> 04:07:19.980]  And I'm Will Roper. I run all of the Air Force and Space Force programs.
[04:07:19.980 --> 04:07:23.800]  And we would like to introduce Roro, our moderator today.
[04:07:23.800 --> 04:07:29.160]  Roro is a member of the Defense Digital Service and has mad security skills.
[04:07:29.160 --> 04:07:34.060]  First things first, I wanted to ask you all the question that I've reached out to a bunch of hackers in the community about.
[04:07:34.060 --> 04:07:38.820]  And the most important thing that's on their minds right now is how do you attach the lanyard to the cassette tape?
[04:07:38.820 --> 04:07:41.140]  Well, that's a question for Dr. Roper, I think.
[04:07:41.700 --> 04:07:44.800]  Dr. Roper, considering your advanced work in this space...
[04:07:46.720 --> 04:07:49.860]  Well, I mean, first of all, there's a design issue here.
[04:07:49.860 --> 04:07:54.240]  So, whoever did this, you're fired if you're on the Air Force.
[04:07:54.640 --> 04:07:58.340]  Thing two, there's no place to immediately hook it.
[04:07:58.340 --> 04:08:00.840]  So, I'd say we just tie it.
[04:08:00.940 --> 04:08:07.280]  We just tie it here and then we hang it around our neck and get a better cassette next year, whoever did this.
[04:08:07.280 --> 04:08:09.320]  Do you have the duct tape?
[04:08:09.320 --> 04:08:12.680]  I mean, basically, if you have a small neck, you're okay.
[04:08:12.680 --> 04:08:17.460]  Like an actual duck. I could wear this if you don't have duct tape.
[04:08:17.980 --> 04:08:24.200]  So, the other question that has also been on their minds is why are y'all here at DEF CON safe mode?
[04:08:24.480 --> 04:08:28.640]  Sure, well, I mean, you had incriminating evidence on me, so I'm here.
[04:08:29.400 --> 04:08:32.260]  We're going to try to go flat the whole time, Roro.
[04:08:32.260 --> 04:08:35.700]  This is between two nerds, after all, the inaugural shooting.
[04:08:35.720 --> 04:08:39.460]  So, no laughter, no fun. This is serious business.
[04:08:39.460 --> 04:08:41.800]  We're hoping to be syndicated.
[04:08:41.800 --> 04:08:48.380]  Eventually. We can't afford ferns yet, but we're headed towards that next step.
[04:08:48.380 --> 04:08:51.660]  So, Roro, we need a bit more of a positive attitude on this.
[04:08:51.660 --> 04:08:56.580]  Like, as we think about sort of our future careers, there seems to be a lot of potential.
[04:08:56.580 --> 04:08:58.820]  Rho cubed today, Roro.
[04:08:58.820 --> 04:09:03.620]  So, Roro, in all seriousness, because we're being serious here between two nerds.
[04:09:05.480 --> 04:09:07.700]  Satellite security is a big deal.
[04:09:08.060 --> 04:09:10.080]  You know, all joking aside, it's a big deal.
[04:09:10.080 --> 04:09:17.580]  Our lives depend on space working in a benign, peaceful way that makes life better for everyone.
[04:09:17.580 --> 04:09:20.900]  You need it for the data that's coming to your phone right now.
[04:09:20.900 --> 04:09:22.560]  You need it for navigation.
[04:09:22.560 --> 04:09:25.480]  You even need it to get cash out of an ATM.
[04:09:25.800 --> 04:09:30.120]  Everyone's lives, as we sit here today, is connected to space.
[04:09:30.280 --> 04:09:33.240]  Well, you can imagine the military is no exception.
[04:09:33.360 --> 04:09:35.060]  We're connected to space.
[04:09:35.060 --> 04:09:41.520]  We use it to move planes from point A to point B, to guide weapons, to plan disaster relief missions.
[04:09:41.540 --> 04:09:43.200]  Everything we do.
[04:09:43.480 --> 04:09:55.540]  So, if you're thinking about a way to beat our military, holding space assets at risk is a pretty easy way to take a big leap forward in terms of your capabilities.
[04:09:55.540 --> 04:10:00.320]  And so we want to know if cyber is something we need to put more worry into.
[04:10:00.320 --> 04:10:05.020]  So we're here to see if people can hack a satellite, which we think they'll be able to.
[04:10:05.020 --> 04:10:11.800]  And we hope to learn from the community how to be better and more cyber resilient in systems we build in the future.
[04:10:12.180 --> 04:10:20.940]  As an international community of hackers and nerds, how can they help out? What is the call to action here if there is one?
[04:10:20.940 --> 04:10:25.180]  Sure, and I'm going to try to stay flat. But boy, it's really hard because I'm excited about this.
[04:10:25.240 --> 04:10:27.100]  Anyway, back to Between Two Nerds.
[04:10:27.100 --> 04:10:33.900]  Just being here and being interested is a huge deal. We want to learn from you. The military is here to learn.
[04:10:34.700 --> 04:10:42.680]  Historically, we have been secure by hiding behind our fence lines and keeping systems secret until they're used on the battlefield.
[04:10:42.680 --> 04:10:44.460]  Well, that doesn't work anymore.
[04:10:44.460 --> 04:10:50.840]  Software is increasingly the delineator in whether systems are dominant or out of the fight.
[04:10:50.840 --> 04:11:00.640]  So we're getting outside of our fence lines and involving communities that can help us, like DEFCON, to see if we need to up our game in cyber.
[04:11:00.740 --> 04:11:12.080]  And so if our satellites have to operate to make the military work the way it's supposed to, we want to expose opportunities to hack them ahead of us taking them into conflict.
[04:11:12.080 --> 04:11:21.720]  So what I hope to learn from DEFCON, from all the amazing community members here, is how good we are today and what we need to do to be better in the future.
[04:11:21.760 --> 04:11:32.700]  So the Department of Defense historically has operated cybersecurity through obscurity, and that is a culture that we're trying to change.
[04:11:32.700 --> 04:11:39.760]  So I'm fortunate I run the Defense Digital Service, which is affectionately known as a SWAT team of nerds.
[04:11:39.760 --> 04:11:47.940]  And we are out there, and we are trying to bring the very best in technical talent to the DoD.
[04:11:47.940 --> 04:11:52.840]  And part of that is about technology, but part of it is about culture.
[04:11:52.840 --> 04:12:04.520]  So when Will and I went to DEFCON last year, I'd been attending DEFCON for many years, but I brought Will, and I said to him, this is a community we need to embrace.
[04:12:04.520 --> 04:12:12.340]  And one, DoD does not need to be afraid of this community. These are folks who we should be friends with.
[04:12:12.340 --> 04:12:20.100]  But two, we need to raise our bar. We need to challenge our software. We need to try and test our systems.
[04:12:20.100 --> 04:12:23.620]  And by doing that, we bring the very best in cybersecurity.
[04:12:23.800 --> 04:12:29.420]  So I love this partnership. We learn a lot. We challenge ourselves.
[04:12:29.420 --> 04:12:34.260]  Sometimes we learn things that are hard, but this is a community we really want to embrace.
[04:12:34.260 --> 04:12:40.580]  So can you tell me a little bit more about how you got involved with the space, or what was the initial ask?
[04:12:40.580 --> 04:12:45.220]  So the first time I went to DEFCON, I was by myself.
[04:12:45.340 --> 04:12:52.680]  And I had recently left my first stint in government, and people were like, you have to go to DEFCON.
[04:12:52.680 --> 04:13:00.720]  And I went there, and I'm like, holy shit, there's a gazillion people here, there are crazy things going on, and people said, don't bring a phone in.
[04:13:00.720 --> 04:13:05.040]  And I was completely enamored with this community.
[04:13:05.040 --> 04:13:14.840]  And then I came to DoD, and as we're trying to change this culture, which is an obscurity culture, a security by checklist,
[04:13:14.840 --> 04:13:23.960]  I'm like, this is a community that can help make us smarter, and help us, again, raise the bar, even against ourselves.
[04:13:23.960 --> 04:13:33.900]  So by bringing Will, and then showing all of the crazy cool things that we're doing, it allowed for that DDS Air Force relationship,
[04:13:34.420 --> 04:13:39.200]  which we could then come back and try and do some really cool things.
[04:13:39.340 --> 04:13:48.220]  And the funny part was last year, when DEFCON was winding up, I go to Will, and I'm like, we should go back.
[04:13:48.220 --> 04:13:51.880]  And Will's like, yeah, we should go back. And I'm like, what do you think we should do?
[04:13:51.880 --> 04:13:58.580]  And DoD's like, we should bring a satellite. And that was crazy. But now it's real.
[04:13:58.820 --> 04:14:04.260]  Yeah, it's great when crazy and real can be the same inside the Pentagon.
[04:14:04.480 --> 04:14:12.620]  And Brett's exactly right, that this is a community that the Department and the Pentagon have been afraid of embracing.
[04:14:13.440 --> 04:14:17.380]  Partly because it's an old Cold War culture that's just behind the times.
[04:14:17.380 --> 04:14:23.640]  And another is simply because it doesn't get outside of its five-sided walls very often.
[04:14:23.640 --> 04:14:28.880]  And my first trip to DEFCON was amazing. I'm a string theorist by background.
[04:14:28.880 --> 04:14:33.500]  I work in physics. I crossed over into defense for really weird reasons.
[04:14:33.500 --> 04:14:42.280]  But it's been an awesome job of getting to run $60 billion of satellites and airplane and cyber capabilities every year.
[04:14:42.280 --> 04:14:48.940]  As I look at this amazing portfolio of programs, everything is driven by software.
[04:14:49.080 --> 04:15:02.920]  And the United States government and our amazing men and women in uniform have put so much time and treasure into these amazing military systems that increasingly operate based on their software.
[04:15:02.920 --> 04:15:11.740]  So if you're looking to defeat us, you don't have to recreate the same systems, build a fighter to match ours, build a satellite to match ours.
[04:15:11.740 --> 04:15:13.900]  You just need to be able to hack us.
[04:15:13.940 --> 04:15:29.900]  And so I came last year wanting to see could people who have a great amount of expertise but not a lot of hands-on capability inside the military get inside a system like an F-15 fighter or the systems that enable it.
[04:15:29.900 --> 04:15:34.380]  And so we brought some of those enabling systems and the hacker community got in.
[04:15:34.380 --> 04:15:40.100]  But getting in was not the point of being here. It was the learning that happened afterwards.
[04:15:40.180 --> 04:15:47.520]  The hacker community got to learn something about our military systems and we left knowing how to make them more secure.
[04:15:47.640 --> 04:15:50.240]  And so we want to do the same thing for satellites.
[04:15:50.240 --> 04:15:55.940]  It's a very different problem than handing you a piece of hardware and saying, can you get in?
[04:15:55.940 --> 04:16:01.240]  The satellite isn't here, it's overhead, moving at 7 kilometers a second.
[04:16:01.240 --> 04:16:08.760]  And it only talks to the ground at certain places where we have a ground station that uplinks and downlinks different commands.
[04:16:08.760 --> 04:16:12.400]  This is a wicked hard problem.
[04:16:12.560 --> 04:16:15.920]  But I expect the DEFCON community is going to get in again.
[04:16:15.920 --> 04:16:19.400]  And the question we're going to ask is what should we learn?
[04:16:19.400 --> 04:16:20.920]  What should we do better?
[04:16:20.920 --> 04:16:26.920]  Because cyber is something any country, any terrorist group can try to do against our military.
[04:16:26.920 --> 04:16:32.120]  It's quicker, easier, and more seductive than trying to take us head on.
[04:16:32.120 --> 04:16:37.160]  So this dark side of the force is something we're going to have to be able to defeat.
[04:16:37.160 --> 04:16:40.300]  And we're here to learn from people who know a lot more than we do.
[04:16:51.420 --> 04:16:57.460]  For the F-15 system, it was really to probe just how many different ways do people get in.
[04:16:57.460 --> 04:17:00.760]  Do we have a design flaw? Is it a design flaw?
[04:17:00.760 --> 04:17:06.880]  Is it a hardware flaw where we've got embedded systems that have back doors that can be accessed?
[04:17:06.940 --> 04:17:10.340]  Is it a software flaw or is it a little bit of all of the above?
[04:17:10.540 --> 04:17:12.420]  It's a little bit of all of the above.
[04:17:12.680 --> 04:17:17.500]  And so after doing a meeting with the hackers that got in, they walked through.
[04:17:17.500 --> 04:17:20.700]  I tried this and it worked. Then I tried this next path and it worked.
[04:17:20.700 --> 04:17:25.140]  And just like electricity always flowing through the path of least resistance,
[04:17:25.140 --> 04:17:32.560]  they kept trying methods that got increasingly harder, but they didn't have to pull their toughest tricks to get in.
[04:17:32.680 --> 04:17:38.840]  So the direction I think we're going, that we ought to go, is fully embracing the hacker community at DEF CON
[04:17:38.840 --> 04:17:45.980]  and not waiting until systems are built to create opportunities to learn and help us learn.
[04:17:45.980 --> 04:17:50.840]  We should bring the hacker community into systems as we design them.
[04:17:50.840 --> 04:17:54.600]  Help us make them more secure before we're producing them.
[04:17:54.600 --> 04:17:59.860]  And I think this could be win-win. We would learn a ton from this community,
[04:17:59.860 --> 04:18:05.640]  but also create some of the most interesting challenges because the systems we build are unique.
[04:18:05.640 --> 04:18:10.580]  They have some pretty amazing technology in them and I think the opportunity for the hacker community
[04:18:10.580 --> 04:18:16.060]  to get new hands-on experience would also be really energizing and cool.
[04:18:16.060 --> 04:18:19.080]  So events like HackASAT are awesome live events,
[04:18:19.080 --> 04:18:26.560]  but the relationship and continuing it across a broader set of opportunities is what's more exciting.
[04:18:26.560 --> 04:18:37.560]  There's an interesting synergy between, one, the hacker community can touch devices you never would think you'd be allowed to touch.
[04:18:37.560 --> 04:18:42.920]  Weapons, satellites, all the things that are pretty cool.
[04:18:42.920 --> 04:18:49.980]  It also helps us learn commonalities where we build a lot of different things.
[04:18:50.040 --> 04:18:57.360]  And by learning those base cases of things we should do and should not do, that helps the design.
[04:18:57.360 --> 04:19:03.800]  But at the same time, people need to understand that there's a creativity to hacking.
[04:19:03.800 --> 04:19:09.760]  We often in the military, we think about checklists and spreadsheets and things like that.
[04:19:09.760 --> 04:19:16.040]  But I know people who have done red team and hacking exercises, it's much more of an art.
[04:19:16.040 --> 04:19:20.320]  And we want to bring that art into making our system safer.
[04:19:21.000 --> 04:19:26.540]  So we started this planning a little bit last year and then COVID hit. How did that change the plans?
[04:19:28.620 --> 04:19:33.120]  So there were moments where it was insanely stressful.
[04:19:33.120 --> 04:19:39.620]  Where it's, we are charging ahead and I'm sitting there, oh my God, what's going to happen with DEF CON?
[04:19:39.620 --> 04:19:45.100]  But then we realized we're perfectly situated for a virtual event.
[04:19:45.200 --> 04:19:52.460]  We have a VR environment. We have all of these workshops. Everything is now accessible from anywhere.
[04:19:52.460 --> 04:19:59.240]  And where I think it's really interesting is we can now provide access to these workshops at a much larger scale.
[04:19:59.240 --> 04:20:04.880]  Whereas last year, like the workshops were awesome, but we were swamped.
[04:20:04.880 --> 04:20:13.560]  But now in the VR environment, we can take thousands of people and also for access to the actual hack a set on event.
[04:20:13.820 --> 04:20:17.280]  It's open to the world now and it's going to be super cool.
[04:20:17.300 --> 04:20:22.400]  So a little anxiety, but we are good to go. And I'm really excited.
[04:20:22.620 --> 04:20:28.000]  I'm more excited about the virtual event than I would have been doing a live event at DEF CON.
[04:20:28.000 --> 04:20:34.460]  And don't get me wrong, it would be awesome to have an event, live event with people attending,
[04:20:34.460 --> 04:20:42.140]  being able to shake hands and give high fives to the team that pull off what is going to be a very difficult challenge.
[04:20:42.300 --> 04:20:48.320]  But the virtual event is going to allow so many more people to be part of this experience,
[04:20:48.320 --> 04:20:54.180]  part of the community that gets to attempt this for the very first time at DEF CON.
[04:20:54.180 --> 04:21:01.020]  And I am so much more excited about a bigger community than I am about putting up a stage at Las Vegas
[04:21:01.020 --> 04:21:03.720]  and then taking it down after the event is over.
[04:21:03.720 --> 04:21:09.360]  We got to do this a few months ago when we were kicking off our flying car program.
[04:21:09.360 --> 04:21:16.080]  Long story, but pretty awesome that we're creating a new initiative to accelerate flying cars for the country.
[04:21:16.180 --> 04:21:21.460]  Well, that program was supposed to be a major kickoff at South by Southwest, which canceled.
[04:21:21.460 --> 04:21:24.140]  And we had to decide, what do we do?
[04:21:24.140 --> 04:21:31.340]  Well, we kept the event rolling through a virtual event and had over 60,000 people participate.
[04:21:31.340 --> 04:21:40.280]  We would have never had that number be able to make it down to Austin and get to an event that could probably hold no more than 2,000 tops.
[04:21:40.340 --> 04:21:45.480]  So the potential for a greater community is huge doing the event this way.
[04:21:45.480 --> 04:21:56.320]  We will still get all of the cool factor from multiple hacker teams having the opportunity to let their code run live in space, which is just an awesome opportunity.
[04:21:56.420 --> 04:22:03.040]  But imagine this, Roro. We had over 2,000 different teams just go through the qualls.
[04:22:03.040 --> 04:22:08.800]  We had over 6,000 people who have already raised their hand to be a hands-on participant.
[04:22:08.800 --> 04:22:12.380]  So who knows how many people will tune in during this week.
[04:22:12.380 --> 04:22:18.180]  But the opportunity to have a broad group of people is the most exciting thing about being virtual.
[04:22:18.180 --> 04:22:22.960]  And I hope everyone that is logging in and participating, I hope that you're safe and well.
[04:22:22.960 --> 04:22:29.920]  So we're super excited that besides HackASet, we are also having a series of workshops.
[04:22:30.020 --> 04:22:34.940]  We have bricks in the air again. We have a ground station exercise.
[04:22:34.940 --> 04:22:40.500]  Now, the thing that's important here is HackASet was extraordinarily competitive.
[04:22:40.500 --> 04:22:46.620]  As Will mentioned, thousands of folks tried out for it and it got narrowed down to eight.
[04:22:46.760 --> 04:22:48.740]  Eight teams, that's right.
[04:22:48.760 --> 04:22:52.680]  And so we have eight rockstar teams doing that.
[04:22:52.680 --> 04:22:59.220]  But part of what we want to do here is help people learn about the variety of technologies.
[04:22:59.220 --> 04:23:04.320]  Because what's really interesting to me is this is a different type of hacking.
[04:23:04.320 --> 04:23:11.060]  This is not your traditional going after a web property or a traditional software app.
[04:23:11.060 --> 04:23:13.600]  There's a new set of skills to learn.
[04:23:13.600 --> 04:23:21.380]  So we have workshops all available via VR, ranging from beginner level all the way up to advanced.
[04:23:21.380 --> 04:23:26.760]  Because we want to help you learn more about the tooling and the skills you need for these types of systems.
[04:23:26.760 --> 04:23:32.860]  And then when you get toward advanced, then you'll be ready to work on the HackASet type of events.
[04:23:32.860 --> 04:23:35.300]  So we have the full stack ready for you.
[04:23:35.460 --> 04:23:41.260]  One of my favorite comments coming out of one of the teammates that participated in the quals was,
[04:23:41.260 --> 04:23:44.900]  I didn't know I needed a degree in physics to hack a satellite.
[04:23:45.140 --> 04:23:49.960]  We don't actually need the degree, but you do need to know a little about physics to hack it.
[04:23:49.960 --> 04:23:56.320]  And part of the purpose of these workshops are to introduce the peculiar new trade craft that will be needed.
[04:23:56.320 --> 04:24:03.680]  So that you can take hacker skills you have today and apply them to these very different opportunities in space and in the air.
[04:24:03.900 --> 04:24:08.520]  So I think we really crushed doing the virtual piece.
[04:24:08.520 --> 04:24:10.420]  What do we do about stickers?
[04:24:10.880 --> 04:24:13.420]  Like the whole Defcon sticker swap?
[04:24:14.100 --> 04:24:15.500]  A little stressful.
[04:24:15.900 --> 04:24:18.000]  Maybe we could do them like Bitcoin.
[04:24:18.620 --> 04:24:20.600]  Crypto coins, that could be the new...
[04:24:20.600 --> 04:24:23.320]  Because I can't get coins out right now. I have a bunch in my office.
[04:24:23.760 --> 04:24:27.020]  So we can mail them, but crypto coins could be the wave of the future.
[04:24:27.080 --> 04:24:30.020]  Yeah, for everyone watching, everyone in the Pentagon has coins.
[04:24:30.020 --> 04:24:35.180]  They're things that you give out when someone's really done something great or helped you out.
[04:24:35.180 --> 04:24:40.460]  So it goes well back in military tradition, but you give them out via handshake.
[04:24:40.460 --> 04:24:45.020]  With the coin in your hand, you shake hands, it transfers from one person to the other.
[04:24:45.020 --> 04:24:50.340]  So COVID-19 has put a serious dent in this time-honored tradition.
[04:24:50.360 --> 04:24:52.320]  So crypto coins...
[04:24:52.320 --> 04:24:55.580]  You throw the coin first, right? But then it gets... it's a hot mess.
[04:24:55.580 --> 04:25:01.720]  It's even worse than that. We have them in little plastic bags, and we dump them from one hand to the other.
[04:25:01.720 --> 04:25:04.560]  It completely has lost the sense of ceremony.
[04:25:05.000 --> 04:25:07.540]  Tap it in the bag first, and then dump them in the hands?
[04:25:07.720 --> 04:25:12.200]  There's no way to say, congratulations, stick out your hand, and then dump a coin in it.
[04:25:12.240 --> 04:25:16.200]  The firm handshake is needed to say, thank you for what you've done.
[04:25:27.350 --> 04:25:30.190]  I thought it was interesting last year.
[04:25:31.150 --> 04:25:35.830]  The expectation of DoD was sadly pretty low.
[04:25:36.470 --> 04:25:44.490]  Expecting someone in a suit, expecting someone in a uniform, who would not engage this community.
[04:25:44.490 --> 04:25:52.010]  And I remember after we gave a talk last year, a bunch of folks came up and they're like, you're not what we expected.
[04:25:52.010 --> 04:25:57.050]  And you're doing super cool shit. How can we help?
[04:25:57.050 --> 04:26:00.810]  And those are the discussions we want to have.
[04:26:00.810 --> 04:26:08.770]  Because Will and I are constantly worried. We're constantly working to raise the bar and make things better.
[04:26:08.770 --> 04:26:12.470]  But we need that level of expertise and partnerships.
[04:26:12.470 --> 04:26:16.710]  So I was thrilled that last year we could go directly engage.
[04:26:16.710 --> 04:26:22.890]  Show that we aren't what you expect, and we do really, really cool things.
[04:26:23.250 --> 04:26:26.050]  And the opportunities are really broad.
[04:26:26.050 --> 04:26:33.770]  So if someone's out thinking, well, I'm interested in helping the military, but I don't know if I want to work on a weapons system.
[04:26:33.910 --> 04:26:37.050]  Every technology under the sun is part of the military.
[04:26:37.050 --> 04:26:40.650]  We do disaster relief every year during the hurricane season.
[04:26:40.650 --> 04:26:46.770]  The Air Force is flying planes in to move people that are under stress and deliver supplies.
[04:26:46.770 --> 04:26:51.630]  And that is a major part of what the military does that doesn't make the news.
[04:26:51.630 --> 04:26:57.590]  We work in energy, we work in medicine, providing a lot of frontline responders to COVID-19.
[04:26:57.810 --> 04:27:00.670]  All of this is empowered by software.
[04:27:00.670 --> 04:27:05.950]  We need digital experts who want to help us take our game to the next level.
[04:27:05.970 --> 04:27:11.390]  So no matter what you are interested in working with us on, the opportunity is there.
[04:27:11.390 --> 04:27:17.530]  And we will be here year after year at DEFCON bringing opportunities for you to participate in our mission.
[04:27:17.590 --> 04:27:20.510]  Learn more about us so that we can learn from you.
[04:27:20.510 --> 04:27:28.130]  So when we were building mysymptoms.mil earlier this year, which is part of our COVID-19 response.
[04:27:28.130 --> 04:27:32.610]  Before we let it out the door, we reached out to someone in the DEFCON community.
[04:27:32.610 --> 04:27:35.790]  Because that needs to be part of our culture.
[04:27:36.110 --> 04:27:38.870]  We're creating software, we think it's pretty good.
[04:27:38.870 --> 04:27:42.630]  We have a pretty good SWAT team, but we want those outside eyes.
[04:27:42.630 --> 04:27:46.610]  And this is for something, COVID-19 is something that's bringing us all together.
[04:27:46.610 --> 04:27:49.510]  And that's a perfect example of community engagement.
[04:27:49.510 --> 04:27:52.290]  And we tightened it up and we got it out the door.
[04:27:52.750 --> 04:27:55.970]  From my view, the defense companies mirror the government.
[04:27:55.970 --> 04:28:00.890]  And the government is slow and 20 years, if not more, behind the time.
[04:28:00.910 --> 04:28:04.030]  So it has to start with the government leading the dance.
[04:28:04.030 --> 04:28:10.010]  And having more people who have technical backgrounds who don't look like what you expect in the Pentagon.
[04:28:10.010 --> 04:28:14.890]  Start bringing in new ideas, new technologies, and just a new culture.
[04:28:14.890 --> 04:28:17.610]  And that's part of why we're here as part of DEFCON.
[04:28:17.610 --> 04:28:24.390]  And part of why we're talking with you through a very different venue than you normally get out of this five-sided building.
[04:28:24.390 --> 04:28:27.850]  So that's step one. The government's got to change.
[04:28:27.850 --> 04:28:30.850]  Step two is government doesn't make much.
[04:28:30.850 --> 04:28:34.010]  We have amazing airmen who write code for us every day.
[04:28:34.010 --> 04:28:39.370]  And sci-fi inspired organizations called Kessel Run, Kobayashi Maru.
[04:28:39.370 --> 04:28:46.490]  And 60 more names covering the sci-fi and comic book universe.
[04:28:46.490 --> 04:28:52.250]  They're awesome teams, but they're a small component of what industry provides.
[04:28:52.250 --> 04:28:56.730]  We don't build airplanes. We don't build satellites ourselves. Rarely.
[04:28:56.810 --> 04:29:00.070]  And so if industry doesn't learn to adopt these new techniques.
[04:29:00.070 --> 04:29:05.810]  If they don't become better at software and shift to new trends and development like containerization.
[04:29:05.810 --> 04:29:12.990]  And shift to open approaches to determining errors in code like bug bounties and open sourcing of code.
[04:29:13.030 --> 04:29:16.190]  Then we will continue to be further and further behind the times.
[04:29:16.190 --> 04:29:19.030]  And ultimately, our model's got to be hybrid.
[04:29:19.070 --> 04:29:24.770]  We won't open source all of our code. We will always have things we reserve for conflict.
[04:29:24.770 --> 04:29:27.210]  But we don't open source anything today.
[04:29:27.210 --> 04:29:30.330]  We did that for the first time this year.
[04:29:30.330 --> 04:29:35.590]  The first time we have open source code that's needed for operations.
[04:29:35.590 --> 04:29:39.870]  I expect that's the most secure code we have right now in the Air Force.
[04:29:39.870 --> 04:29:45.150]  So what's next? The question I have for industry is what's next?
[04:29:45.150 --> 04:29:47.810]  And when are you going to be part of the solution?
[04:29:48.310 --> 04:29:51.450]  There's a cultural piece we need to get at here.
[04:29:51.450 --> 04:29:54.950]  A couple things that drive me crazy.
[04:29:54.950 --> 04:29:57.410]  One, good enough for government work.
[04:29:57.410 --> 04:30:01.270]  Like that is absolute bullshit. End of sentence.
[04:30:01.350 --> 04:30:06.590]  Two is, you know, Will mentioned that government is behind.
[04:30:06.590 --> 04:30:08.230]  How is that okay?
[04:30:08.510 --> 04:30:13.610]  And this is one of the reasons I left the private sector and came into government.
[04:30:13.610 --> 04:30:17.230]  Because we can't be okay with this.
[04:30:17.230 --> 04:30:21.110]  So part of what Will and I do is reset this culture.
[04:30:21.270 --> 04:30:25.750]  And challenge ourselves, never have acceptance for that.
[04:30:25.950 --> 04:30:29.370]  Because neither one of those statements make any sense to me.
[04:30:29.450 --> 04:30:31.090]  So do you both have tenure in your jobs?
[04:30:31.090 --> 04:30:33.470]  Because this seems like a really bad idea.
[04:30:33.910 --> 04:30:35.610]  The hacking satellites...
[04:30:37.710 --> 04:30:42.150]  Well, as long as it doesn't come crashing down through the roof anytime soon.
[04:30:42.150 --> 04:30:45.470]  We're probably going to make it a few months more.
[04:30:46.390 --> 04:30:50.150]  I will say we've taken extraordinary security precautions.
[04:30:50.150 --> 04:30:54.830]  To make sure that everything is going to be okay up in orbital land.
[04:30:54.970 --> 04:30:58.510]  But we are going to let teams move the satellite.
[04:30:58.530 --> 04:31:02.050]  So not move it in a translational sense.
[04:31:02.050 --> 04:31:04.810]  But we're going to let teams rotate it.
[04:31:04.810 --> 04:31:08.550]  And if they're good enough and they can do their orbital mechanics quickly enough.
[04:31:08.550 --> 04:31:11.050]  We're asking them to take a picture of the moon.
[04:31:11.050 --> 04:31:16.030]  So what we hope to send out to the hacker community is a wonderful image of the moon.
[04:31:16.150 --> 04:31:19.410]  Brought courtesy of the hacker team that won.
[04:31:19.450 --> 04:31:25.750]  So that's a pretty, pretty awesome opportunity to have that code actually change something in orbit.
[04:31:25.810 --> 04:31:31.870]  But we've taken extraordinary procedures to make sure that's all that that code will be able to do.
[04:31:32.170 --> 04:31:34.950]  But Auro, your question is actually an important one.
[04:31:34.950 --> 04:31:39.730]  So in terms of tenure, no, I have no idea how long I have in this job.
[04:31:39.730 --> 04:31:42.510]  I came into defense through happenstance.
[04:31:42.510 --> 04:31:45.490]  Worked for a couple of secretaries of defense.
[04:31:45.630 --> 04:31:50.510]  Built a lot of awesome systems, very few of which I can talk about.
[04:31:50.510 --> 04:31:54.950]  But amazing capabilities, swarming things, etc.
[04:31:55.090 --> 04:31:58.350]  Made with a lot of incredible men and women in uniform.
[04:31:58.350 --> 04:32:04.630]  But crossing over into this job, running all the Air Force and Space Force programs, which is an awesome job.
[04:32:04.630 --> 04:32:06.450]  If you're ever asked to do it, say yes.
[04:32:06.450 --> 04:32:13.890]  Because you get all of these amazing technologies, satellites and airplanes and cyber tools and amazing people to work with.
[04:32:14.090 --> 04:32:18.310]  But you only get to be in the job as long as you're asked to do it.
[04:32:18.310 --> 04:32:21.310]  And so my tenure could be very short.
[04:32:21.350 --> 04:32:30.730]  And what I hope, what I pray for the Pentagon is that people in leadership will keep asking technical people to come and serve.
[04:32:30.730 --> 04:32:36.250]  So if you're out there thinking, I'd love to be part of an Air Force hacking team, then come find us.
[04:32:36.250 --> 04:32:36.970]  Come join us.
[04:32:36.970 --> 04:32:44.190]  If you want to be part of Defense Digital Service, which would be an amazing job where you wouldn't have to wear a suit to work every day.
[04:32:44.190 --> 04:32:45.110]  Come join them.
[04:32:45.110 --> 04:32:48.970]  Be one of the squadron of nerds.
[04:32:48.970 --> 04:32:49.650]  I'm using Air Force.
[04:32:49.650 --> 04:32:51.270]  Can you be a squadron of nerds?
[04:32:51.270 --> 04:32:54.070]  So the squadron of nerds is part of the SWAT team of nerds?
[04:32:54.230 --> 04:32:56.410]  Squadron of nerds would be like the Air Force.
[04:32:56.410 --> 04:32:57.510]  We're all squadrons.
[04:32:57.510 --> 04:33:00.270]  So we could have like an auxiliary squadron of nerds.
[04:33:00.770 --> 04:33:02.170]  Well, there you go.
[04:33:02.170 --> 04:33:04.270]  But take the opportunity up.
[04:33:04.270 --> 04:33:05.690]  You won't be sorry.
[04:33:05.690 --> 04:33:12.930]  But that's ultimately the trend we need are people that have technical talent who don't want to work in the government forever.
[04:33:13.150 --> 04:33:23.310]  But that say, you know, for for one, two, three years, I want to go take on some new opportunities for the government to make it easy and energizing to do that.
[04:33:23.750 --> 04:33:26.090]  So I'm I'm here on a two year tour.
[04:33:26.090 --> 04:33:27.650]  I am halfway through.
[04:33:27.650 --> 04:33:33.150]  But the story is like I'm part of the story, but I'm not the story.
[04:33:33.150 --> 04:33:35.310]  I'm part of an 80 person team.
[04:33:35.310 --> 04:33:39.170]  And this is the best team I've ever been part of.
[04:33:39.170 --> 04:33:44.350]  And there will be another director after me who will represent the team.
[04:33:44.350 --> 04:33:49.110]  But every day, the SWAT team of nerds goes out and works on projects.
[04:33:49.110 --> 04:33:52.990]  You really you can't believe it makes insane impact.
[04:33:53.070 --> 04:33:54.870]  So I'll do my two years.
[04:33:54.870 --> 04:33:59.510]  And but the mission will go on and the team will continue to rock.
[04:33:59.890 --> 04:34:03.830]  I can see if the Air Force can make DDS an honorary squadron.
[04:34:03.830 --> 04:34:05.010]  That'd be cool.
[04:34:05.010 --> 04:34:06.870]  I'm taking that action.
[04:34:06.930 --> 04:34:09.190]  Colonel Bailey, action taken.
[04:34:09.690 --> 04:34:10.690]  That's a colonel.
[04:34:10.690 --> 04:34:12.970]  Colonel, I just promoted you to Colonel Captain Bailey.
[04:34:12.970 --> 04:34:14.110]  Action taken.
[04:34:14.390 --> 04:34:16.210]  Can can.
[04:34:16.210 --> 04:34:18.090]  Does that mean we can go to space?
[04:34:19.170 --> 04:34:20.170]  This is important.
[04:34:20.170 --> 04:34:22.190]  Can we just work this through?
[04:34:23.150 --> 04:34:26.850]  I think astronaut training should be required for that, Brad.
[04:34:27.070 --> 04:34:31.270]  So I was watching Picard with the kids last night.
[04:34:31.670 --> 04:34:34.510]  And they have that transport thing.
[04:34:34.510 --> 04:34:37.150]  I figured somewhere in the classified portfolio.
[04:34:37.630 --> 04:34:38.810]  We're working it.
[04:34:38.810 --> 04:34:39.490]  OK.
[04:34:39.770 --> 04:34:42.050]  So if that works, can I go to space?
[04:34:42.050 --> 04:34:46.850]  It's right next to the warp drive, right next to the photon torpedo.
[04:34:46.850 --> 04:34:52.550]  So yes, when we've got teleportation done, Brad, I will personally teleport you up to the space station.
[04:34:52.690 --> 04:34:53.590]  Got it.
[04:34:53.690 --> 04:34:55.250]  How's the food up there?
[04:34:56.170 --> 04:34:58.170]  NASA provides that, so I don't know.
[04:34:58.970 --> 04:35:00.910]  Do you think there are any gummy products?
[04:35:00.910 --> 04:35:03.030]  I'm going to guess... oh, I don't know, Brad.
[04:35:03.030 --> 04:35:06.010]  Because gummy products have a high degree of water content.
[04:35:06.010 --> 04:35:08.290]  And all that's going to outgas.
[04:35:08.370 --> 04:35:11.610]  So how would mayonnaise perform in space?
[04:35:11.610 --> 04:35:12.490]  Not well.
[04:35:12.890 --> 04:35:14.190]  That's a critical issue.
[04:35:14.190 --> 04:35:14.910]  Not well.
[04:35:14.910 --> 04:35:21.650]  So you'd have to get at least a pressure-sealed vessel, but all things we can work on.
[04:35:21.650 --> 04:35:22.930]  Science never stops.
[04:35:22.930 --> 04:35:27.830]  I'm a little fussy about mayonnaise, so we'd want to work that through before the transporter.
[04:35:27.830 --> 04:35:31.370]  So spam sandwiches not going to be on your list for astronaut?
[04:35:31.370 --> 04:35:31.790]  No.
[04:35:31.790 --> 04:35:32.690]  And a tank?
[04:35:33.210 --> 04:35:34.050]  No, no.
[04:35:34.050 --> 04:35:40.090]  I was figuring... well, I am fussy about the mayonnaise, but you can actually put mayonnaise with most foods.
[04:35:40.910 --> 04:35:42.530]  Just something to ponder.
[04:35:53.200 --> 04:35:58.860]  So I'm often asked, why don't we have more artificial intelligence in the Air Force than we do today?
[04:35:58.860 --> 04:36:01.660]  Something I'm working very hard to change.
[04:36:01.760 --> 04:36:06.100]  Well, one is it's really hard to certify something that changes all the time.
[04:36:06.100 --> 04:36:11.460]  But what isn't well understood in the Pentagon, and I find through the country as a whole,
[04:36:11.460 --> 04:36:16.420]  is that artificial intelligence is very fragile in the face of an adversary.
[04:36:16.420 --> 04:36:18.280]  It's very easy to beat.
[04:36:18.280 --> 04:36:24.560]  And so we need to get into the game more and bring the DEFCON and the hacker community into our world
[04:36:24.560 --> 04:36:30.820]  and give them opportunities to start beating AI ahead of those opportunities being available commercially.
[04:36:30.820 --> 04:36:35.200]  So that's where I'd like to see us go, is into algorithmic defeat.
[04:36:35.200 --> 04:36:38.360]  Because that's the next generation of warfare.
[04:36:38.360 --> 04:36:44.040]  And the earlier we can determine how to make it safe and secure, the better off everyone's going to be.
[04:36:44.840 --> 04:36:49.420]  So I think you'll find that we're good listeners.
[04:36:49.560 --> 04:36:55.680]  So we have ideas. We just talked about AI and potential issues with that.
[04:36:55.680 --> 04:36:57.800]  We're talking about satellites now.
[04:36:57.800 --> 04:37:00.000]  But we're curious what you think.
[04:37:00.000 --> 04:37:07.640]  What are things, whether design flaws we should be thinking about, which can be really portable,
[04:37:07.640 --> 04:37:12.380]  or other types of exploits that might not be on our radar.
[04:37:12.380 --> 04:37:15.280]  So we'd love to just hear your thoughts.
[04:37:15.280 --> 04:37:16.800]  We're going to listen.
[04:37:17.760 --> 04:37:20.480]  And tell us things we don't know.
[04:37:20.480 --> 04:37:23.980]  Or tell us about challenges which are really hard.
[04:37:23.980 --> 04:37:28.480]  Like, a year ago, hacking a satellite felt pretty hard.
[04:37:28.480 --> 04:37:29.980]  But we're there now.
[04:37:29.980 --> 04:37:36.600]  What is a really hard one that you're thinking about, that we can challenge ourselves for, for next year?
[04:37:36.740 --> 04:37:39.740]  Why did you pick Steve Carell for Space Force?
[04:37:43.600 --> 04:37:47.340]  I mean, you have to love Steve Carell, right?
[04:37:47.340 --> 04:37:49.800]  I mean, I'm such a huge Office fan.
[04:37:49.800 --> 04:37:54.140]  And so when that came out, I thought, you know, money just because of that.
[04:37:54.140 --> 04:37:57.880]  But on the whole, when I get to talk Space Force,
[04:37:57.880 --> 04:38:07.100]  beyond the hype and, you know, the glitz that the public media often shine on it,
[04:38:07.100 --> 04:38:10.680]  it gets really simple to explain that, you know,
[04:38:10.680 --> 04:38:14.520]  do you think that adversaries will try to take on the military in space,
[04:38:14.520 --> 04:38:20.060]  given we have a ton of communications and navigation satellites?
[04:38:20.160 --> 04:38:25.800]  Satellites of all kinds, whose data we pump to the systems we take into a fight.
[04:38:25.800 --> 04:38:28.400]  Everyone says, well, yeah, of course, no duh.
[04:38:28.640 --> 04:38:33.720]  Well, if we think adversaries are going to challenge us there, then we've got to be ready there.
[04:38:33.720 --> 04:38:39.960]  But fighting in space is going to be really different than fighting in the air, on the sea, or under it.
[04:38:39.980 --> 04:38:46.920]  It's a domain that's governed almost entirely by physics in a way that makes it predictable.
[04:38:46.960 --> 04:38:52.800]  We know where satellites are going to be minute by minute, second by second, on forever, ad infinitum,
[04:38:52.800 --> 04:38:55.100]  unless we decide to move them.
[04:38:55.120 --> 04:39:01.340]  But moving satellites using that precious propellant, that's a big choice in space.
[04:39:01.340 --> 04:39:04.440]  Because there are no gas stations, no place to fill up.
[04:39:04.440 --> 04:39:06.480]  So it is a very different domain.
[04:39:06.480 --> 04:39:09.820]  And we're just here talking about low-Earth orbit constellations,
[04:39:09.820 --> 04:39:16.160]  those that are very near the Earth, that are moving around at 7 kilometers a second.
[04:39:16.160 --> 04:39:23.380]  But GPS satellites are much further out, in what are medium-altitude orbits.
[04:39:23.380 --> 04:39:29.000]  And satellites that do communication and detection are all the way out in geosynchronous orbit.
[04:39:29.000 --> 04:39:32.760]  And though they're moving really fast relative to the Earth, they're not.
[04:39:32.760 --> 04:39:34.060]  They're stationary overhead.
[04:39:34.060 --> 04:39:41.120]  Every one of these is a very different domain governed by apparently different physics.
[04:39:41.180 --> 04:39:46.360]  And that's why we've got men and women getting ready, who are thinking about warfare in space,
[04:39:46.360 --> 04:39:49.600]  and they've got a clean sheet of paper in their hands.
[04:39:49.620 --> 04:39:53.680]  How do we fight in this domain where things are very predictable?
[04:39:53.820 --> 04:39:56.700]  And you can guess what answers are coming to the forefront.
[04:39:56.700 --> 04:39:58.940]  We're going to have to rely on autonomy.
[04:39:58.940 --> 04:40:04.640]  And that means the software that we put is going to be so important to whether we win or lose.
[04:40:04.700 --> 04:40:06.400]  But then that brings you in.
[04:40:06.400 --> 04:40:12.560]  If our software is going to be the cutting edge, and the autonomy it runs on is going to be how we win,
[04:40:12.560 --> 04:40:14.180]  then how do we make it secure?
[04:40:14.780 --> 04:40:22.460]  So I think we went through this period where, at least we as a society, didn't talk a lot about space.
[04:40:22.460 --> 04:40:26.980]  And I'm happy to see that change.
[04:40:26.980 --> 04:40:31.620]  Will talked about all the critical things about space.
[04:40:31.620 --> 04:40:34.720]  Timing, ATMs, GPS, all of these different things.
[04:40:34.720 --> 04:40:36.580]  And that is super critical.
[04:40:36.620 --> 04:40:43.420]  But I guess I bring out my inner kid now, where a couple months ago I sat down,
[04:40:43.420 --> 04:40:47.500]  I have three little kids, and we watched a SpaceX launch.
[04:40:47.500 --> 04:40:53.240]  And there was an excitement there that I feel it's been a long time.
[04:40:54.900 --> 04:40:58.080]  It's been missing from society for a bit.
[04:40:58.080 --> 04:41:01.760]  There's something aspirational, inspirational about it.
[04:41:01.760 --> 04:41:08.120]  And seeing the launch, seeing the landing, talking about space, thinking about the importance of it,
[04:41:08.120 --> 04:41:13.400]  and all the critical things that it does, it excites me for the future.
[04:41:14.040 --> 04:41:16.740]  So I'm excited that we're talking about space.
[04:41:16.740 --> 04:41:19.460]  I still would like to go to space.
[04:41:19.700 --> 04:41:24.680]  I don't think, Will, you've gotten your transporter done.
[04:41:24.900 --> 04:41:33.440]  But with all that being said, I'm really also, until you actually take me to space, I look forward to helping protect space.
[04:41:33.600 --> 04:41:34.820]  Sounds good, Brett.
[04:41:34.820 --> 04:41:41.820]  And aside from just watching SpaceX, you know, just the other day we watched Perseverance and Ingenuity head up.
[04:41:41.820 --> 04:41:45.860]  And so we're really, really excited about the enthusiasm in space.
[04:41:45.860 --> 04:41:51.980]  And Space Force gets to provide most of the rocketry that the entire government and commercial industry uses.
[04:41:52.100 --> 04:41:54.720]  So it's going to be a little while until we beam you to space.
[04:41:54.720 --> 04:41:59.080]  But we've got some excellent works in rockets that can help push you there.
[04:41:59.220 --> 04:42:02.820]  Do you think I could do that training thing in a couple weeks?
[04:42:03.180 --> 04:42:04.360]  Just banging it out?
[04:42:04.420 --> 04:42:08.700]  Let's talk about that next time on Between Two Nerds.
[04:42:08.700 --> 04:42:10.020]  Thanks for coming.
[04:42:10.880 --> 04:42:11.800]  Okay.
[04:42:29.540 --> 04:42:36.380]  So we're really easy. We're on the Twitters. At least I'm on the Twitters. Are you on the Twitters?
[04:42:36.380 --> 04:42:41.520]  I promised Brett that for DEFCON, I would send out my first tweet.
[04:42:41.520 --> 04:42:44.560]  So I'm really looking forward to seeing Will on the Twitters.
[04:42:44.560 --> 04:42:52.380]  We're also going to be... Will and I will be in the VRs during DEFCON. You can find us there.
[04:42:52.500 --> 04:42:55.680]  We'll be on Twitch. We'll be all over.
[04:42:55.680 --> 04:42:59.660]  And we'll make sure that we leave a link on our HackASAP site.
[04:42:59.660 --> 04:43:07.580]  If you are interested in finding out more about participating in future hacking events with the Air Force or DDS,
[04:43:07.580 --> 04:43:11.900]  we will leave a place for you to find us, for us to contact you.
[04:43:11.900 --> 04:43:14.100]  And we also want to hear your suggestions.
[04:43:14.100 --> 04:43:22.280]  And when COVID is done, if you're in D.C., come to the Pentagon. We'd love to hear your ideas.
[04:43:31.050 --> 04:43:33.910]  So can zombies swim?
[04:43:34.650 --> 04:43:43.130]  I don't know, Brett. I think it probably depends on what movie we're in and whether they knew how to swim before they were zombified.
[04:43:43.190 --> 04:43:49.430]  So I intentionally moved to an island where part of my intent was being zombie safe.
[04:43:49.430 --> 04:43:50.750]  How deep is the water?
[04:43:50.750 --> 04:43:51.930]  Pretty deep.
[04:43:51.930 --> 04:43:53.710]  Did you see World War Z?
[04:43:53.710 --> 04:43:54.390]  I did.
[04:43:54.390 --> 04:43:55.550]  Is it that deep?
[04:43:56.970 --> 04:43:58.870]  It might not be deep enough.
[04:43:58.870 --> 04:44:00.430]  You might need a better island.
[04:44:05.650 --> 04:44:10.750]  Thanks, RoRo, for the Q&A and Dr. Roper and Brett for your vision behind HackASAP.
[04:44:10.990 --> 04:44:15.510]  Remember at the beginning of the day I told you that not all of this event would happen on the Earth?
[04:44:15.510 --> 04:44:20.390]  Well, I hope teams are ready because we are about to throw them a massive curveball.
[04:44:20.390 --> 04:44:24.190]  The on-orbit challenge is about to drop on our unsuspecting teams.
[04:44:24.190 --> 04:44:26.070]  Well, okay, they have a little bit of suspicion.
[04:44:26.070 --> 04:44:31.650]  But our teams have only a few hours to create a mission plan for an actual satellite in space.
[04:44:31.770 --> 04:44:39.070]  Their task is to orient a spinning satellite, point its camera at the moon, take a photograph, and send it back home to the HackASAP contest officials.
[04:44:39.170 --> 04:44:46.490]  The team with the best solution will win what might even be a more valuable prize than the cash part of this competition, bragging rights.
[04:44:46.490 --> 04:44:53.710]  That's right. One team in this competition can say that their code directed a real satellite in space and took a proverbial moon shot.
[04:44:55.370 --> 04:44:58.390]  Stop everything and look up.
[04:44:58.590 --> 04:45:02.230]  Starting now, teams shift to the on-orbit challenge.
[04:45:02.290 --> 04:45:06.590]  Their primary goal is to capture a picture of the moon using this satellite.
[04:45:07.270 --> 04:45:12.970]  Competitors will have access to the two-line element of the vehicle and the camera's foresight vector.
[04:45:12.970 --> 04:45:20.650]  Each team is tasked with creating a mission plan that transitions a satellite from a tumbling state to one where it points the camera at the moon.
[04:45:21.250 --> 04:45:26.710]  The team will reach a successful status once their resulting mission plan meets key criteria.
[04:45:27.130 --> 04:45:32.330]  1. The commands are generated in the correct order and are within the specified period.
[04:45:32.590 --> 04:45:36.990]  2. The image capture angle of the moon is within specifications.
[04:45:36.990 --> 04:45:46.190]  3. The team's negative z-axis is pointed as close to the Earth's center as possible without affecting the camera-to-moon pointing error.
[04:45:46.410 --> 04:45:54.110]  The teams are given a command dictionary with the format for submitting the commands and parameters. The rest is up to them.
[04:45:58.470 --> 04:46:02.010]  There's one final important fact for this on-orbit challenge.
[04:46:02.010 --> 04:46:07.710]  While there's no score associated with it like the other challenges, it is a pass-fail challenge.
[04:46:07.710 --> 04:46:13.330]  Teams must produce a successful solution to be eligible for the prize money in this competition.
[04:46:13.450 --> 04:46:18.630]  If they want to end up on the podium, they have to be successful in this challenge. No pressure or anything.
[04:46:19.150 --> 04:46:28.610]  I'll see you back here in about an hour at 12.50pm Pacific, 3.50pm Eastern as we check in with our teams on both their Earth-based and extraterrestrial challenges.
[05:18:41.940 --> 05:18:53.980]  EARTH-BASED CHALLENGE
[05:45:45.810 --> 05:45:51.770]  Welcome back to a Hackistat competition update. I'm your host Jordan Wines. Taking a look
[05:45:51.770 --> 05:45:56.550]  at the scoreboard so far we've had an eventful last hour. Our teams continue to
[05:45:56.550 --> 05:46:01.210]  make progress with four teams now having solved challenge one. Unfortunately the
[05:46:01.210 --> 05:46:04.910]  window of time after first solve has expired and the remaining four teams
[05:46:04.910 --> 05:46:10.530]  were given a solution with no points. PFS and colon can into space were joined by
[05:46:10.530 --> 05:46:15.390]  1553 and 1064 seabread with solutions for challenge one.
[05:47:16.900 --> 05:47:20.480]  1064 seabread has been around for several years going all the way back to
[05:47:20.480 --> 05:47:24.480]  when they were first high school friends playing as CTFs. In fact I first met
[05:47:24.480 --> 05:47:28.820]  them five years ago as the only team of high school students at a collegiate CTF
[05:47:28.820 --> 05:47:33.200]  competition and the team even included a standout freshman. Yep a high school
[05:47:33.200 --> 05:47:37.040]  freshman competing with college freshmen and college seniors. And while I don't
[05:47:37.040 --> 05:47:40.960]  personally know any of 1553 after they gave me some interesting facts about
[05:47:40.960 --> 05:47:45.400]  them I kind of feel like I do. For example one team member has additional
[05:47:45.400 --> 05:47:49.780]  sound dampening around his office due to his above-average laughter volume. One
[05:47:49.780 --> 05:47:54.700]  member was fired from a previous job for quote smiling too much quote and another
[05:47:54.700 --> 05:48:00.380]  member was a college mascot. Finally their team logo or team motto rather is
[05:48:00.380 --> 05:48:04.600]  preparation is the enemy of innovation which sounds a little bit like an excuse
[05:48:04.600 --> 05:48:10.260]  but you can't argue with their results. Let's take a look at the solution for
[05:48:10.260 --> 05:48:16.660]  challenge one now that all teams have it. Challenge number one. Here's what we
[05:48:16.660 --> 05:48:20.760]  know. Having access to the ground station means we can attempt communication but
[05:48:20.760 --> 05:48:25.100]  the satellite is spinning out of control which complicates everything. The
[05:48:25.100 --> 05:48:30.260]  challenge. Teams must regain communication with the satellite. Here's
[05:48:30.260 --> 05:48:34.480]  how they do it. To get started teams must set the command and telemetry rates
[05:48:34.480 --> 05:48:38.340]  appropriately and the power output to maximum. Because the satellite is
[05:48:38.340 --> 05:48:42.100]  spinning additional link margin is required. The teams receive periodic
[05:48:42.100 --> 05:48:46.100]  telemetry but are not able to command the vehicle. Based on the review of the
[05:48:46.100 --> 05:48:50.180]  anomaly resolution section in the user's guide they realize that to increase the
[05:48:50.180 --> 05:48:54.640]  link margin they should increase radio output power and decrease link rate. They
[05:48:54.640 --> 05:48:58.600]  command the radio to high power and low rate mode and regain communications with
[05:48:58.600 --> 05:49:02.560]  the satellite. The link is limited to low rate meaning that what they can send and
[05:49:02.560 --> 05:49:14.990]  receive from the satellite is limited. This is a good example of the type of
[05:49:14.990 --> 05:49:18.810]  challenge that is a little different in this type of CTF versus many other types
[05:49:18.810 --> 05:49:23.410]  of CTF. While teams were told to quote restore communication quote that goal
[05:49:23.410 --> 05:49:27.210]  was much more ambiguous than often traditional CTF challenges and mirrors
[05:49:27.210 --> 05:49:31.590]  more of the real-world problem-solving you run into in space-based applications.
[05:49:31.630 --> 05:49:34.790]  Because our imaginary bad actors had intentionally modified the satellite's
[05:49:34.790 --> 05:49:38.270]  orientation and they were moving around uncontrollably communication between the
[05:49:38.270 --> 05:49:42.430]  ground station and the satellite was not stable. To fix this teams needed to both
[05:49:42.430 --> 05:49:46.150]  lower the transfer rates boost the power and that would finally let them
[05:49:46.150 --> 05:49:49.870]  enable ground-based communications and that would let them control all the
[05:49:49.870 --> 05:49:52.870]  components of the satellite or at least the ones that they've been able to
[05:49:52.870 --> 05:49:57.030]  figure out so far. In fact the challenge was real-world enough that at least one
[05:49:57.030 --> 05:50:00.150]  team was able to solve it in the normal order of just working with the satellite
[05:50:00.150 --> 05:50:04.630]  without even specifically realizing they had solved the challenge. All that brings
[05:50:04.630 --> 05:50:12.190]  us to challenge two. Challenge two. Here's what we know. The satellite is
[05:50:12.190 --> 05:50:15.530]  spinning out of control because the guidance navigation and control system
[05:50:15.530 --> 05:50:22.870]  or GNC is inoperable. We suspect sabotage. The challenge teams must repair the GNC
[05:50:22.870 --> 05:50:36.600]  system as quickly as possible to stop the dangerous spinning. As teams begin to
[05:50:36.600 --> 05:50:40.060]  as teams now have regular communication with their satellites they'll need to
[05:50:40.060 --> 05:50:43.480]  get the movement under control but it's also worth mentioning at this point that
[05:50:43.480 --> 05:50:47.060]  these satellites do actually have their own battery and power supply. They're
[05:50:47.060 --> 05:50:51.400]  taken off each night to be charged and while power utilization is not a scored
[05:50:51.400 --> 05:50:55.380]  metric in the game if one team does manage to cause too much movement or
[05:50:55.380 --> 05:50:58.820]  otherwise drain all of their power that could impact their ability to interact
[05:50:58.820 --> 05:51:02.500]  with the satellite for the remainder of the day. Looking forward to seeing what
[05:51:02.500 --> 05:51:05.380]  they do. We'll see you back here in another hour for our next competition
[06:44:42.010 --> 06:44:45.810]  Welcome back to the competition formerly known as Space Security Challenge 2020
[06:44:45.810 --> 06:44:50.990]  now HackASat. Well it's actually still known by Moth. I just wanted to change
[06:44:50.990 --> 06:44:54.310]  the intro because they're gonna get pretty repetitive. I'm your host Jordan
[06:44:54.310 --> 06:44:58.110]  Wines. The game has been a little bit slower this hour but that makes sense
[06:44:58.110 --> 06:45:01.390]  because teams are starting to get into the harder challenges. As a reminder
[06:45:01.390 --> 06:45:05.790]  teams are currently working on two separate challenges. First the on-orbit
[06:45:05.790 --> 06:45:10.310]  challenge is it as it the on-orbit challenge involves them designing a
[06:45:10.310 --> 06:45:13.870]  payload that will execute a moonshot taking a picture of the moon from an
[06:45:13.870 --> 06:45:17.150]  actual orbiting satellite. While that challenge won't show up on the
[06:45:17.150 --> 06:45:21.830]  scoreboard with points it is a pass-fail challenge. Only teams that score within
[06:45:21.990 --> 06:45:25.550]  a time window will be eligible for podium placement and the related
[06:45:25.550 --> 06:45:31.590]  $50,000 $30,000 and $20,000 prizes. Since there's a lot of data being displayed on
[06:45:31.590 --> 06:45:35.290]  our octagon scoreboard otherwise known as that thing you're looking at when
[06:45:35.290 --> 06:45:39.150]  it's not my face on this YouTube feed here's a quick primer on some of the
[06:45:39.150 --> 06:45:44.110]  elements. First the display on the left shows a scoreboard breakdown that
[06:45:44.110 --> 06:45:48.170]  breaks down each team's points earned per challenge, shows the total score and
[06:45:48.170 --> 06:45:51.910]  includes a log of recent solves and messages sent from each team to their
[06:45:51.910 --> 06:45:55.790]  flat sat. Note that the message contents have actually been sanitized to not
[06:45:55.790 --> 06:46:01.170]  give away answers but you might find some other things there instead. On the
[06:46:01.170 --> 06:46:04.770]  right scoreboard you'll see the time of the teams you see the score of the teams
[06:46:04.770 --> 06:46:08.550]  over time. Right now it's skewed a little bit to the left but as the game
[06:46:08.550 --> 06:46:12.230]  progresses it will stretch out and we'll see how they do on each of these
[06:46:12.230 --> 06:46:17.790]  new challenges. Finally each team has a dedicated panel with a main view and
[06:46:17.790 --> 06:46:22.290]  three supplementary views. Technically we can change the supplementary views but
[06:46:22.290 --> 06:46:27.350]  right now the main view shows a team logo with their color, a representation
[06:46:27.350 --> 06:46:31.450]  of the team's flat sat including the rotation, position over the earth and
[06:46:31.450 --> 06:46:35.390]  messages sent. Note that the little pew-pew you see are just for visual
[06:46:35.390 --> 06:46:40.090]  effect and not actually representative of actual messages being sent. On the
[06:46:40.090 --> 06:46:43.710]  graph right now on the right, excuse me, the three graphs on the right, the top
[06:46:43.710 --> 06:46:48.390]  graph is yaw, the middle graph is angular velocity and the bottom graph is total
[06:46:48.390 --> 06:46:52.170]  messages all done over time which makes for a nice overview of the different
[06:46:52.170 --> 06:46:56.830]  activity from each team's flat sat. Remember you can vote to control which
[06:46:56.830 --> 06:46:59.950]  of these views you're looking at in the virtual environment inside of the
[06:46:59.950 --> 06:47:03.850]  Stardome. That feed doesn't cut over these live updates and always shows the
[06:47:03.850 --> 06:47:07.810]  Octagon. While we wait on our teams to continue to solve these challenges
[06:47:07.810 --> 06:47:11.790]  they're working on, now's a great time to introduce another segment we call Space
[06:47:11.790 --> 06:47:15.750]  Talk. If, like me, you're a hacker who might know about computers but is
[06:47:15.750 --> 06:47:19.330]  ignorant of what goes into making code run in space, there's a lot of new things
[06:47:19.330 --> 06:47:24.750]  to learn. Our first Space Talk episode is about how to keep track of time in space.
[06:47:39.610 --> 06:47:45.470]  So what time is it in space? Well that's a complicated question. For the
[06:47:45.470 --> 06:47:48.930]  astronauts on the International Space Station and for most orbiting satellites
[06:47:48.930 --> 06:47:54.970]  they run on Coordinated Universal Time or UTC. It's not actually a time zone but
[06:47:54.970 --> 06:48:00.330]  rather a time standard that just so happens to be the same as GMT. It's used
[06:48:00.330 --> 06:48:05.670]  to prevent time zone confusion and give a standard time to reference. But for
[06:48:05.670 --> 06:48:10.750]  astronauts especially it's just a number. On the International Space Station the
[06:48:10.750 --> 06:48:14.870]  Sun rises and sets about every 90 minutes so there isn't any relationship
[06:48:14.870 --> 06:48:18.450]  between the Sun and what time it is that's meaningful to the astronauts.
[06:48:18.810 --> 06:48:22.910]  Satellites are the same way. Time is primarily used to inform them when to
[06:48:22.910 --> 06:48:27.970]  execute commands and perform operations. Universal time is just a reference
[06:48:27.970 --> 06:48:33.270]  number that's easy to relate back to your local time. But that's not the only
[06:48:33.270 --> 06:48:38.730]  time that's used for space applications. UTC is not an exact accounting of the
[06:48:38.730 --> 06:48:43.690]  passage of time but rather strives to stay aligned with the rotation of the
[06:48:44.290 --> 06:48:48.930]  Earth because it's primarily people on Earth that are using it. Earth's rotation
[06:48:48.930 --> 06:48:53.190]  is both irregular in the short term and slowing down permanently in the long
[06:48:53.190 --> 06:48:58.830]  term. Earth days are getting about 1.6 milliseconds longer every single day.
[06:48:58.830 --> 06:49:03.110]  This isn't in any way noticeable in daily life but can be very significant
[06:49:03.110 --> 06:49:07.870]  over time. As a result we use a different time scale when dealing with orbital
[06:49:07.870 --> 06:49:12.930]  motion. Orbital motion doesn't care about the Earth's rotation at all. It must be
[06:49:12.930 --> 06:49:17.670]  extremely precise because of the massive distances involved. The most
[06:49:17.670 --> 06:49:23.090]  common time standards used are Julian date and terrestrial time which are both
[06:49:23.090 --> 06:49:27.550]  entirely independent of Earth's rotation. To give an idea of just how different
[06:49:27.550 --> 06:49:34.090]  these time scales can be, over the last century between 1900 and 2000, universal
[06:49:34.090 --> 06:49:40.370]  time was about 64 seconds slower than terrestrial time. It's a tiny difference
[06:49:40.370 --> 06:49:44.670]  to us but when you're dealing with precise predictions over millions of
[06:49:44.670 --> 06:49:49.110]  miles it gets very significant. And that's the key. What time it is in space
[06:49:49.110 --> 06:49:54.450]  isn't important so you can look at the clock on the wall and know if you need
[06:49:54.450 --> 06:49:59.370]  to go to bed. It's important so you can know where you are and know where things
[06:49:59.370 --> 06:50:05.110]  are. Everything in space is constantly moving, orbiting one object or another.
[06:50:05.170 --> 06:50:09.350]  Telling where it's located is intrinsically linked to what time it is.
[06:50:09.350 --> 06:50:14.650]  This gets to our next question. How do you tell where something is in space? As
[06:50:14.650 --> 06:50:18.430]  I said before, everything in space is constantly moving and orbiting around
[06:50:18.430 --> 06:50:22.790]  something else. All this motion is primarily controlled by gravity. So to
[06:50:22.790 --> 06:50:27.490]  know where something is right now, we use where it was at some time in the past
[06:50:27.490 --> 06:50:32.310]  and we predict where it is now based on the laws of gravitational motion. Now you
[06:50:32.310 --> 06:50:36.510]  might ask how do I tell you where it is or even where it was? On Earth I could
[06:50:36.510 --> 06:50:41.670]  tell you where to go based on your address or some landmark and these are
[06:50:41.670 --> 06:50:46.210]  useful frames of reference that we can use to fully communicate where something
[06:50:46.210 --> 06:50:51.490]  is. In space there are an infinite number of reference frames that we can use but
[06:50:51.490 --> 06:50:56.490]  we also have an added complexity. Since again everything is moving all the time,
[06:50:56.490 --> 06:51:00.870]  to have a frame of reference we need to incorporate time. There are several
[06:51:00.870 --> 06:51:04.670]  different ways of describing where things are but we typically focus on two
[06:51:04.670 --> 06:51:10.230]  reference frames. One, what's easiest for us to use. For example, if I want to take
[06:51:10.370 --> 06:51:14.050]  a photo of the moon I would want to know where the moon is in relation to where
[06:51:14.050 --> 06:51:19.650]  I'm going to be when I have my camera. And two, what's easiest to calculate.
[06:51:19.650 --> 06:51:24.690]  Orbital math is hard and many times impossible so picking a reference frame
[06:51:24.690 --> 06:51:29.710]  that makes your calculation as easy as possible is often necessary. This
[06:51:29.710 --> 06:51:33.470]  reference point is usually whatever has the most significant gravitational
[06:51:33.470 --> 06:51:38.990]  effect and ignores all other motion. For satellites we use Earth. We want to know
[06:51:38.990 --> 06:51:42.510]  where they are relative to our location on the Earth. This frame of reference is
[06:51:42.510 --> 06:51:47.950]  called Earth Centered Earth Fixed or ECEF as it is rotating with the Earth
[06:51:47.950 --> 06:51:53.970]  and is fixed to it. It's the same as GPS coordinates but it's much much easier to
[06:51:53.970 --> 06:51:57.990]  calculate the position of the satellite when we ignore the rotation of the Earth
[06:51:57.990 --> 06:52:03.050]  which is a different frame of reference called Earth Centered Inertial or ECI. So
[06:52:03.050 --> 06:52:08.290]  if I saw where a satellite was in relation to me in the ECEF frame at time
[06:52:08.290 --> 06:52:13.210]  t0 and I need to know where the satellite will be in relation to me in
[06:52:13.210 --> 06:52:19.610]  the ECEF frame at time t1, we actually need to calculate three different steps.
[06:52:19.610 --> 06:52:28.130]  One, translate the coordinates I observed at t0 in ECEF to ECI at t0. Two,
[06:52:28.130 --> 06:52:34.390]  translate the orbital motion of the satellite in ECI from t0 to t1 where our
[06:52:34.390 --> 06:52:39.070]  calculations are easier. And three, translate the coordinates I calculated
[06:52:39.070 --> 06:52:46.790]  at t1 back to ECEF from ECI. Steps one and three both require translating
[06:52:46.790 --> 06:52:53.050]  between these coordinate frames ECEF and ECI. So how do we do that translation?
[06:52:53.050 --> 06:52:57.250]  Here is where we now introduce the idea of an epoch. An epoch is a point in time
[06:52:57.250 --> 06:53:01.330]  that we use as a reference to translate between these types of frames.
[06:53:01.330 --> 06:53:07.830]  Specifically we use the J2000 or Julian date 2000 epoch to translate between
[06:53:07.830 --> 06:53:14.230]  ECEI and ECEF as we set the ECEI reference frame to be the same as the
[06:53:14.230 --> 06:53:18.830]  ECEF at that time. That way we can calculate the translation between them
[06:53:18.830 --> 06:53:25.270]  by calculating how much the earth has rotated since Julian date 2000. This is a
[06:53:25.270 --> 06:53:28.610]  simplification of the constant translation and calculation done
[06:53:28.610 --> 06:53:33.810]  throughout satellites, space technology, and astronomy. But that is why time and
[06:53:33.810 --> 06:53:37.870]  space are both extremely important and highly dependent on really what you're
[06:53:37.870 --> 06:53:56.840]  looking to do with them. Thanks to Jess Coffey for putting those videos together.
[06:53:56.840 --> 06:54:01.840]  That one was epic. Now this was going to be where I signed off for this update
[06:54:01.840 --> 06:54:07.840]  but as we were live PFS actually jumped up on the scoreboard yet again solving
[06:54:07.840 --> 06:54:12.500]  challenge 2. This means that we can now move on to exposing all teams to
[06:54:12.500 --> 06:54:21.160]  challenge 3. Challenge 3. Here's what we know. With the repair complete on the GNC
[06:54:21.160 --> 06:54:24.880]  the satellite has stopped spinning but we still can't communicate with the
[06:54:24.880 --> 06:54:29.580]  payload module or operate the imager. We have to ask ourselves what else did they
[06:54:29.580 --> 06:54:34.100]  damage on this satellite? The challenge? Teams must restore communication with
[06:54:34.100 --> 06:54:44.640]  the payload module so we can get it working again. This has been our last
[06:54:44.640 --> 06:54:48.160]  hourly update for the day. I'm looking forward to seeing everyone back here at
[06:54:48.160 --> 06:54:53.260]  4 p.m. Pacific 7 p.m. Eastern for a daily recap of all that's happened so far.
[08:57:22.420 --> 08:57:28.300]  Welcome to Space Security Challenge 2020, HackASAP. The final event of the
[08:57:28.300 --> 08:57:32.680]  As the democratization of space opens up a new frontier for exploration and
[08:57:32.680 --> 08:57:38.940]  innovation, we see new cybersecurity vulnerabilities emerging. The Space
[08:57:38.940 --> 08:57:42.660]  Security Challenge is designed to inspire the world's top cybersecurity
[08:57:42.660 --> 08:57:47.460]  talent to develop the skills necessary to secure this last frontier of
[08:57:47.460 --> 08:57:54.580]  cybersecurity, space. And already we've made a ton of progress. I'll catch you up.
[08:57:54.580 --> 08:57:58.720]  This spring we hosted over 2,000 teams who worked their way through a set of
[08:57:58.720 --> 08:58:03.280]  foundational space cybersecurity challenges in our HackASAP qualification
[08:58:03.280 --> 08:58:08.400]  round. Now, eight finalist teams are stepping up to the ultimate challenge.
[08:58:08.860 --> 08:58:11.900]  They are hacking a satellite.
[08:58:17.840 --> 08:58:22.900]  Welcome to the first of two daily recaps for the Space Security Challenge 2020 or
[08:58:22.900 --> 08:58:28.260]  HackASAP. I'm still your host, Jordan Wines. As our eight teams have been
[08:58:28.260 --> 08:58:32.500]  vying for a share of a $100,000 prize pool, we're going to check in and
[08:58:32.500 --> 08:58:37.460]  summarize the status of the day. Of course, they also received $15,000 just
[08:58:37.460 --> 08:58:41.820]  to get here as a finalist. The competition for that was fierce. Our
[08:58:41.820 --> 08:58:46.420]  finalists beat out over 2,000 other teams made up of over 6,000 other
[08:58:46.420 --> 08:58:50.880]  competitors. Of course, the biggest prize of all might not even be the money or
[08:58:50.880 --> 08:58:54.300]  even the friends we made along the way, but the bragging rights for your code to
[08:58:54.300 --> 08:58:58.860]  be selected to take an actual photograph of the moon from a satellite in space.
[08:58:59.000 --> 08:59:02.900]  While this event was originally planned to be in person during DEF CON in the
[08:59:02.900 --> 08:59:06.760]  Aerospace Village, the global pandemic has caused us to reimagine the event
[08:59:06.760 --> 08:59:10.980]  experience. The result is an immersive 3D environment where you can stay up-to-date
[08:59:10.980 --> 08:59:14.240]  with the competition while learning all about space security and the event
[08:59:14.240 --> 08:59:17.820]  itself. You can connect with other spectators and even play games and add
[08:59:17.820 --> 08:59:22.040]  to our graffiti wall. So if you aren't already watching this from our immersive
[08:59:22.040 --> 08:59:27.460]  3D environment, check it out at virtual.hackasat.com. As prior DEF CON
[08:59:27.460 --> 08:59:31.520]  attendees, some of you are very familiar with the many flavors of
[08:59:31.520 --> 08:59:35.620]  contests that test your hacking skills. But for others, we realize this is a
[08:59:35.620 --> 08:59:39.920]  whole new world. There are many types of hacking contests and Hackasat falls
[08:59:39.920 --> 08:59:47.780]  into the category of Capture the Flag or CTF. Remember the game you played as a
[08:59:47.780 --> 08:59:52.460]  kid with flags hitting an opponent's terrain? Now imagine the field or code
[08:59:52.460 --> 08:59:57.020]  and the flags are secret data. Players exploit security flaws to capture the
[08:59:57.020 --> 09:00:01.200]  flags while at the same time defending their networks from opposing teams. These
[09:00:01.200 --> 09:00:06.480]  Capture the Flag CTF events are as diverse as the teams that play them. This
[09:00:06.480 --> 09:00:10.620]  is a global competitive community with thousands of players and global rankings.
[09:00:10.620 --> 09:00:15.440]  It's been a part of the origin story for a great many prominent security experts.
[09:00:15.440 --> 09:00:20.420]  So what do these hacking games look like? CTFs can be either in-person or online
[09:00:20.420 --> 09:00:25.180]  and usually take place over a weekend or other short period. They often have a
[09:00:25.180 --> 09:00:29.340]  qualification round that determines who gets to participate in the finals. CTFs
[09:00:29.340 --> 09:00:34.340]  are sometimes themed around a specific domain like space for Hackasat, but more
[09:00:34.340 --> 09:00:37.940]  commonly they are not specialized and include a wide variety of different
[09:00:37.940 --> 09:00:43.100]  types of challenges. The most common types of CTFs include Jeopardy CTFs,
[09:00:43.100 --> 09:00:47.180]  sometimes called Red Team CTFs, are named for their use of the classic game
[09:00:47.180 --> 09:00:50.940]  board as a scoreboard. These are more offensive focused. Each team is given
[09:00:50.940 --> 09:00:55.180]  infrastructure to attack and the number of successful attacks, the difficulty, or
[09:00:55.180 --> 09:00:58.720]  the speed at which they succeed is factored into their score. Attack
[09:00:58.720 --> 09:01:03.720]  Defense, A slash D, or Full Spectrum CTFs, which are closer to the original game
[09:01:03.720 --> 09:01:07.900]  you might have played as a kid. Each team has a server or set of servers to defend
[09:01:07.900 --> 09:01:11.960]  and must attack other teams while also protecting their own infrastructure.
[09:01:11.960 --> 09:01:16.100]  Key of the Hill style CTFs are Full Spectrum CTFs, in which teams score
[09:01:16.100 --> 09:01:20.280]  points by gaining and maintaining control of individual systems. And
[09:01:20.280 --> 09:01:24.480]  finally, the less common Blue Team exercises, which are primarily defensive
[09:01:24.480 --> 09:01:28.300]  events. Game organizers host an environment and often a professional
[09:01:28.300 --> 09:01:32.020]  team of attackers to test the participants defensive skills. These are
[09:01:32.020 --> 09:01:36.260]  more common in the high school and collegiate level. How do you win? Even
[09:01:36.260 --> 09:01:39.980]  though the goal of the CTFs are to find and exploit vulnerabilities in computer
[09:01:39.980 --> 09:01:44.560]  systems, fair play is essential. There are lots of ways to win, but to get the
[09:01:44.560 --> 09:01:48.720]  respect of your peers, you need to have good technical solutions. Nobody is
[09:01:48.720 --> 09:01:52.260]  impressed if you use a network flood to knock the scoreboard offline, and those
[09:01:52.260 --> 09:01:56.340]  kinds of shenanigans will get you shunned quickly. The best CTF players
[09:01:56.340 --> 09:02:00.360]  have built specialized tools, practice within their domains, and include domain
[09:02:00.360 --> 09:02:07.340]  experts in many aspects of security. Why CTF? At their core, CTF challenges are a
[09:02:07.340 --> 09:02:10.980]  way for hackers to build community and demonstrate and hone their skills with
[09:02:10.980 --> 09:02:14.400]  other equally skilled people. Competitions are also a chance to
[09:02:14.400 --> 09:02:18.140]  experience the joy of learning about a new programming language or a new piece
[09:02:18.140 --> 09:02:22.040]  of technology hackers haven't used before. Capture the Flag challenges have
[09:02:22.040 --> 09:02:25.680]  also been used to help train cyber security teams and to get new hackers
[09:02:25.680 --> 09:02:30.120]  interested in security research. Some companies even use competitions similar
[09:02:30.120 --> 09:02:34.760]  to CTFs to recruit and vet potential candidates for employment. And CTFs have
[09:02:34.760 --> 09:02:39.200]  had real-world impact with competitors finding actual security flaws in contest
[09:02:39.200 --> 09:02:43.460]  infrastructure. Their solutions, while not counting towards winning the game, are
[09:02:43.460 --> 09:02:48.420]  often implemented in a real-world context. With HackASat, we have a CTF
[09:02:48.420 --> 09:02:52.440]  game designed to raise awareness about cyber security issues in space and help
[09:02:52.440 --> 09:02:56.000]  researchers develop specific skills and domain knowledge they'll need to help
[09:02:56.000 --> 09:03:00.460]  secure this new frontier. But as many of the players during our quals round found
[09:03:00.460 --> 09:03:04.220]  out, there are a lot of problems unique to the environments outside our
[09:03:04.220 --> 09:03:08.260]  atmosphere. To learn more about hacking in space, check out our space talk videos
[09:03:08.260 --> 09:03:12.260]  that explain some of the most interesting space-specific challenges.
[09:03:13.480 --> 09:03:17.620]  For more on CTFs and other hacking and space related topics, go to the research
[09:03:17.620 --> 09:03:22.440]  room in the virtual environment or check out the related YouTube playlist. Okay,
[09:03:22.440 --> 09:03:32.680]  let's go ahead and recap the whole day so far. The game has actually been
[09:03:32.680 --> 09:03:36.760]  underway for one hour now and our team's first challenge has been to regain
[09:03:36.760 --> 09:03:40.360]  control of the ground station that they'll be using to communicate with
[09:03:40.360 --> 09:03:45.340]  their Flatsats. In fact, just before this broadcast went live, we received word
[09:03:45.340 --> 09:03:50.760]  that this challenge was actually solved by Team Samurai. Congratulations to them!
[09:03:50.760 --> 09:03:54.920]  Right after our last update ended with only a Samurai solve, several other teams
[09:03:54.920 --> 09:03:59.980]  came in with solutions for Challenge Zero. PFS and Solarwine were solvers 2
[09:03:59.980 --> 09:04:05.240]  and 3 on that challenge. After those two teams scored on Challenge Zero, every
[09:04:05.240 --> 09:04:08.200]  other team was eventually able to solve Challenge Zero over the next several
[09:04:08.200 --> 09:04:13.320]  hours. Taking a look at the scoreboard so far, we've had an eventful last hour. Our
[09:04:13.320 --> 09:04:16.920]  teams continue to make progress with four teams now having solved Challenge
[09:04:16.920 --> 09:04:21.300]  One. Unfortunately, the window of time after first solve has expired and the
[09:04:21.300 --> 09:04:25.900]  remaining four teams were given a solution with no points. PFS and Colon
[09:04:25.900 --> 09:04:31.620]  Can Into Space were joined by 1553 and 1064 Seabred with solutions for
[09:04:31.620 --> 09:04:35.840]  Challenge One. Now this was going to be where I signed off with this update, but
[09:04:35.840 --> 09:04:41.360]  as we were live, PFS actually jumped up on the scoreboard yet again, solving
[09:04:41.360 --> 09:04:51.530]  Challenge Two. You may have noticed that first blood overlay and sound effect in
[09:04:51.530 --> 09:04:54.950]  that summary. While it was originally used in Unreal Tournament to indicate a
[09:04:54.950 --> 09:04:58.810]  kill, the phrase and even sometimes the sound effects are often used in CTF
[09:04:58.810 --> 09:05:04.330]  competitions to indicate the first team to solve a particular challenge. The
[09:05:04.330 --> 09:05:09.370]  challenges that teams have solved so far include a Challenge Zero, which required
[09:05:09.370 --> 09:05:12.870]  exploiting an insecure web application to steal credentials for the ground
[09:05:12.870 --> 09:05:16.670]  station controller, and then using that Cosmos ground station, the teams had to
[09:05:16.670 --> 09:05:20.150]  restore communication with their flatsats as they were tumbling and not
[09:05:20.150 --> 09:05:24.770]  communicating well. The Challenge One involved connecting to the
[09:05:24.770 --> 09:05:28.670]  satellites, connecting to the ground station, turning up the power, turning
[09:05:28.670 --> 09:05:33.410]  down the bandwidth, which is very much a real-world troubleshooting step. Next, the
[09:05:33.410 --> 09:05:37.670]  teams have to restore proper orientation control over their flatsat, but only one
[09:05:37.670 --> 09:05:41.910]  team so far has managed to accomplish this feat. That brings us to what's
[09:05:41.910 --> 09:05:45.770]  happened in the last two hours of the competition. Most teams are now working
[09:05:45.770 --> 09:05:50.390]  on two or three challenges. The on-orbit challenge, Challenge Two, and Challenge
[09:05:50.390 --> 09:05:57.050]  Three. PFS has been pulling away to a healthy lead that is going to be hard to
[09:05:57.050 --> 09:06:02.370]  catch up to tomorrow. Hard, but definitely not impossible. All it takes is for them
[09:06:02.370 --> 09:06:06.290]  to get stuck in a problem and be passed in turn, much like they did to Samurai at
[09:06:06.290 --> 09:06:10.970]  the start of the game. It's also interesting to note that PFS, which is
[09:06:10.970 --> 09:06:15.770]  actually short for Pwn First Search, and Pulling Can Into Space, are number one
[09:06:15.770 --> 09:06:19.110]  and number two on the leaderboard, are two of the smallest teams in the
[09:06:19.110 --> 09:06:23.470]  competition. Having a large team is sometimes an advantage, but it definitely
[09:06:23.470 --> 09:06:26.930]  comes with logistical issues, and in this case, where the challenges are serial in
[09:06:26.930 --> 09:06:32.130]  nature, it isn't always helpful. Let's take a look again at
[09:06:32.130 --> 09:07:05.580]  the PFS team bio. If you were here with us live, you might remember that right in
[09:07:05.580 --> 09:07:09.460]  the middle of teams working on their challenges at around 12 p.m. Pacific, all
[09:07:09.460 --> 09:07:13.900]  teams had to stop what they were doing and shift focus to the on-orbit challenge.
[09:07:15.060 --> 09:07:21.600]  Stop everything and look up. Starting now, teams shift to the on-orbit challenge.
[09:07:21.840 --> 09:07:26.280]  Their primary goal is to capture a picture of the moon using the satellite.
[09:07:26.880 --> 09:07:30.820]  Competitors will have access to the two-line element of the vehicle and the
[09:07:30.820 --> 09:07:35.380]  camera's foresight vector. Each team is tasked with creating a mission plan that
[09:07:35.380 --> 09:07:39.260]  transitions a satellite from a tumbling state to one where it points the camera
[09:07:39.260 --> 09:07:44.060]  at the moon. The team will reach a successful status once the resulting
[09:07:44.060 --> 09:07:49.360]  mission plan meets key criteria. One, the commands are generated in the correct
[09:07:49.360 --> 09:07:54.600]  order and are within the specified period. Two, the image capture angle of
[09:07:54.600 --> 09:08:00.920]  the moon is within specifications. Three, the team's negative z-axis is pointed as
[09:08:00.920 --> 09:08:04.520]  close to the Earth's center as possible without affecting the camera to moon
[09:08:04.520 --> 09:08:09.260]  pointing error. The teams are given a command dictionary with the format for
[09:08:09.260 --> 09:08:17.940]  submitting the commands and parameters. The rest is up to them. Of course, while
[09:08:17.940 --> 09:08:22.260]  PFS is currently in the lead, they still have a critical problem to solve,
[09:08:22.260 --> 09:08:26.600]  specifically, the on-orbit challenge. While Poland can into space is only
[09:08:26.600 --> 09:08:30.220]  nipping at their heels at number two on the scoreboard, they are critically not
[09:08:30.220 --> 09:08:34.100]  only the first team with an attempted solution to their on-orbit challenge, but
[09:08:34.100 --> 09:08:38.280]  the first with an accepted solution. That would mean that they would be able to
[09:08:38.280 --> 09:08:43.040]  pass PFS if PFS is not able to actually solve because, again, that is a pass-fail
[09:08:43.040 --> 09:08:46.560]  challenge and it will be critical to see what happens in the last few minutes of
[09:08:46.560 --> 09:08:51.100]  gameplay today as well as tomorrow in the on-orbit challenge. Now that the day
[09:08:51.100 --> 09:08:54.740]  is wrapping up, hopefully some of the organizers have a little bit more time,
[09:08:54.740 --> 09:08:58.500]  so we're going to see if we can bring into video chat Vito Genovese, who many
[09:08:58.500 --> 09:09:01.880]  of you may recognize from his time as a member of LegitBS, the team that
[09:09:01.880 --> 09:09:05.880]  organized the DEF CON CTF for five years prior to the current organizers, the
[09:09:05.880 --> 09:09:09.400]  Order of the Overflow. Vito is also currently with Chromulence, the creators
[09:09:09.400 --> 09:09:13.460]  of the flatsats and many of the challenges in Hackasat. Vito, can you
[09:09:13.460 --> 09:09:16.840]  hear me? Are you there? Yes, loud and clear. Good evening.
[09:09:17.040 --> 09:09:19.920]  Excellent. Glad we got you. Thanks for stopping by. I know you guys have been
[09:09:19.920 --> 09:09:24.120]  very, very busy kind of manning the systems and talking to the teams. How's
[09:09:24.120 --> 09:09:29.020]  the game going so far? It's been going. We've kind of had some, you
[09:09:29.020 --> 09:09:33.160]  know, rough times today. The flatsats are, you know, small run hardware, which
[09:09:33.160 --> 09:09:36.920]  always has issues. But we're super, super thankful the teams are being
[09:09:36.920 --> 09:09:39.980]  patient with us, and they're putting up a good fight and making really, really
[09:09:39.980 --> 09:09:45.640]  good progress in the game. So tomorrow we're hoping for... Sorry, is this pacing what you expected?
[09:09:45.640 --> 09:09:48.500]  Speaking of like how they're kind of doing, is this about where you thought
[09:09:48.500 --> 09:09:50.560]  they would be, or you wanted them to be, or how does this fit with your
[09:09:50.560 --> 09:09:55.360]  expectations? It's really hard to set expectations for these games. A lot
[09:09:55.360 --> 09:09:58.420]  of it is, you know, throwing, you know, stuff around. We can't even be in the
[09:09:58.420 --> 09:10:03.640]  same room doodling on a whiteboard while we do it. So, you know, the expectations
[09:10:04.360 --> 09:10:08.440]  are not necessarily what's been happening, but we'll survive. It's a
[09:10:08.440 --> 09:10:13.660]  difficult game and, you know, we'll see what happens tomorrow. And I mean, it does
[09:10:13.660 --> 09:10:16.900]  seem like that if they're made good progress up to here, they could have been
[09:10:17.080 --> 09:10:19.880]  a lot further behind. It would be nice to see them maybe a challenge ahead, but
[09:10:19.880 --> 09:10:23.100]  this is certainly within reach, right? Like there's nothing kind of too crazy
[09:10:23.100 --> 09:10:26.300]  about what they have remaining. This could be doable. We know these are
[09:10:26.300 --> 09:10:30.860]  good teams that are capable of more, it seems like, right? Right, yeah, absolutely.
[09:10:31.260 --> 09:10:35.920]  The, you know, challenges zero, challenges one, they're hard challenges. And the
[09:10:35.920 --> 09:10:38.920]  teams that took time on them, they still took time on them. They did make progress
[09:10:38.920 --> 09:10:44.980]  and they did get through eventually. It's, you know, admirable work and it's, you
[09:10:44.980 --> 09:10:47.660]  know, it's great to see everybody involved. Now, do you miss actually being
[09:10:47.660 --> 09:10:50.880]  in Vegas and going to DEF CON or you actually kind of prefer being remote?
[09:10:50.880 --> 09:10:55.500]  What's your take on that? Oh, I absolutely miss it. You know, my
[09:10:56.020 --> 09:10:59.360]  favorite restaurant in Vegas, I miss, or my favorite restaurants plural in Vegas,
[09:10:59.360 --> 09:11:03.460]  I miss that. I miss seeing my friends. I miss wearing my, you know, special DEF CON
[09:11:03.460 --> 09:11:09.280]  shoes, which are behind me on the shelf. They're not in frame yet, but, you know,
[09:11:09.280 --> 09:11:13.900]  it's better than getting really, really sick, I guess. Given the alternative,
[09:11:13.900 --> 09:11:17.760]  yeah, we're all kind of doing what we can and should there. In fact, even you
[09:11:17.760 --> 09:11:21.360]  were originally supposed to be on stream with me and we just thought for safety
[09:11:21.360 --> 09:11:25.120]  reasons that we would do this via Zoom and we'd be able to work it out that way.
[09:11:25.120 --> 09:11:29.640]  So thanks for doing that. Tell me a little bit more about the rationale behind the
[09:11:29.640 --> 09:11:34.200]  scoring algorithm and the game design. This decay and the kind of the grace
[09:11:34.200 --> 09:11:38.160]  window, what design constraints went into that decision?
[09:11:38.720 --> 09:11:41.820]  Okay, so the main design constraint with this is it's a very linear
[09:11:41.820 --> 09:11:47.300]  capture-the-flag game. So what has to happen is we're trying to get teams to
[09:11:47.300 --> 09:11:51.480]  take over this or regain control of this, you know, tumbling satellite lost in
[09:11:51.480 --> 09:11:56.220]  space. And that is a complicated operation. And instead of just having, you
[09:11:56.220 --> 09:12:00.080]  know, one single, you know, you get this chunk of points if you win the game, we
[09:12:00.080 --> 09:12:03.820]  split it up into different little gates that teams have to pass through. So, you
[09:12:03.820 --> 09:12:07.940]  know, challenge zero or the first gate is getting control of a machine in the
[09:12:07.940 --> 09:12:11.700]  ground station. Challenge one after that is being able to actually talk and
[09:12:11.700 --> 09:12:16.240]  receive messages with the satellite. So we had to split this up in order to keep,
[09:12:16.240 --> 09:12:20.320]  you know, make the game actually have points before you get to the end. And at
[09:12:20.320 --> 09:12:23.800]  the same time, in order to make the points actually meaningful, we wanted to
[09:12:23.800 --> 09:12:27.040]  make sure there is some time pressure for teams to go quickly and make
[09:12:27.040 --> 09:12:30.980]  progress throughout the whole weekend. So we have this kind of decay system
[09:12:30.980 --> 09:12:35.020]  implemented. So each challenge is worth a fixed number of points at the beginning.
[09:12:35.240 --> 09:12:40.240]  And as soon as the team solves it the first time, the clock starts ticking. So
[09:12:40.240 --> 09:12:44.020]  within that first 30 minutes, anybody else who solves that challenge is also
[09:12:44.020 --> 09:12:47.220]  going to get the full points. For challenge zero, that would be 50 points.
[09:12:47.220 --> 09:12:52.100]  For challenge two or for challenge one, that was 200 points. Beyond that, after
[09:12:52.100 --> 09:12:56.040]  that first 30 minutes, we have another two-hour interval where that point
[09:12:56.820 --> 09:13:01.020]  amount starts gradually ticking down towards zero. Once it's hit zero, we
[09:13:01.020 --> 09:13:04.420]  don't award points for it. And at that point, it also means that we share hints
[09:13:04.420 --> 09:13:07.700]  to, you know, nudge teams along to get them to the next phase of the competition.
[09:13:08.440 --> 09:13:11.980]  And that's one of the advantages, I think, is that, you know, that a team, if
[09:13:11.980 --> 09:13:14.800]  they happen to get stuck on one particular problem in a serial event in
[09:13:14.800 --> 09:13:18.540]  particular, there's just not much you can do in fairness to the other teams in
[09:13:18.540 --> 09:13:20.980]  terms of, you know, kind of, you don't want to give a team a hint just because
[09:13:20.980 --> 09:13:24.160]  they're behind, because that actually hurts them. But by having the score drop
[09:13:24.160 --> 09:13:27.560]  off at a point which they have to be done or else they're just given a hint,
[09:13:27.560 --> 09:13:30.640]  well, then they've lost all the points for it. And so it keeps them up with the
[09:13:30.640 --> 09:13:34.660]  game while not punishing the teams that do well. So that makes a lot of sense. If
[09:13:34.660 --> 09:13:38.260]  you had a favorite challenge, what's the number? And if it's one we haven't seen
[09:13:38.260 --> 09:13:41.600]  yet, like, no spoilers, of course, but what do you like best?
[09:13:42.040 --> 09:13:46.220]  So it's honestly, for me, it's probably challenge one, which is kind of where the
[09:13:46.220 --> 09:13:49.860]  game starts to diverge from a normal capture the flag contest. With challenge
[09:13:49.860 --> 09:13:54.320]  zero, we had a web app that teams had to, I think, determine a cookie secret in.
[09:13:54.580 --> 09:13:55.460]  And that's very...
[09:13:58.460 --> 09:14:03.440]  Nudge one is where we start to diverge. That's where we have to, once we've
[09:14:03.440 --> 09:14:08.100]  gotten into the ground station and are able to talk to the satellite control
[09:14:08.100 --> 09:14:12.900]  system, Cosmos, that's where teams have to figure out how to turn telemetry on on
[09:14:12.900 --> 09:14:16.720]  the satellite, because it's not just another machine on the network with an IP
[09:14:16.720 --> 09:14:21.800]  address. And where teams have to figure out how to tell the satellite's radio to
[09:14:21.800 --> 09:14:24.820]  configure itself in a way that it's actually functional for the rest of the
[09:14:24.820 --> 09:14:27.080]  game, for sending messages back and forth.
[09:14:27.080 --> 09:14:30.500]  I saw a great quote go over the team communication channel from the organizers
[09:14:30.500 --> 09:14:35.860]  that said, these are not like traditional network devices.
[09:14:35.860 --> 09:14:40.180]  And if you think sending two requests a second will get you more reliability the
[09:14:40.180 --> 09:14:44.140]  way you would in a normal network, that may be counterproductive here, which I
[09:14:44.140 --> 09:14:46.500]  thought was a great kind of nod towards the, yeah, there's some different
[09:14:46.500 --> 09:14:51.300]  constraints and different concerns that maybe are not the folks' first instincts
[09:14:51.300 --> 09:14:53.860]  are accurate on, given the environment.
[09:14:53.860 --> 09:14:55.320]  So that makes a lot of sense.
[09:14:55.800 --> 09:15:00.360]  Yeah, absolutely. It's a satellite is, in some senses, it is still a
[09:15:00.360 --> 09:15:03.780]  computer. But the problem is, is it's a computer that costs millions and
[09:15:03.780 --> 09:15:06.240]  millions of dollars to, you know, install.
[09:15:06.300 --> 09:15:07.840]  And it costs, you know, billions of...
[09:15:09.600 --> 09:15:12.380]  No, I think we might have lost you a little bit there for some network.
[09:15:12.380 --> 09:15:13.620]  Oh, you're back now. Go ahead.
[09:15:13.820 --> 09:15:15.000]  Yeah. OK. Yeah.
[09:15:15.000 --> 09:15:18.580]  It costs, you know, millions to put it in place in the first place.
[09:15:18.580 --> 09:15:22.080]  And it costs billions to send somebody up there to push a button to restart it.
[09:15:22.680 --> 09:15:26.240]  Beyond that, it's, you know, a computer that you only talk to on RF.
[09:15:26.260 --> 09:15:30.240]  And it's moving in a way that whatever you can see it, you can probably
[09:15:30.240 --> 09:15:33.460]  talk to it. But there's a lot of time from any given ground station where you
[09:15:33.460 --> 09:15:37.280]  can't see it at all. And that's a very unique challenge.
[09:15:38.320 --> 09:15:42.160]  Vito, thank you very much for both your work on the game and for taking some
[09:15:42.160 --> 09:15:45.080]  time to talk to us tonight. Look forward to seeing how the teams do tomorrow.
[09:15:45.260 --> 09:15:49.140]  I look forward to talking to some more as we see their progress.
[09:15:50.100 --> 09:15:51.640]  Excellent. Thanks. Take care.
[09:15:51.940 --> 09:15:57.220]  Take care. That's it for this first day of the Space Security Challenge 2020
[09:15:57.220 --> 09:16:01.800]  HackASet final event. Overnight, we'll be taking our FlatSats offline so they can
[09:16:01.800 --> 09:16:05.560]  get a good rest, a.k.a. have their batteries charged, and so the competition
[09:16:05.560 --> 09:16:09.800]  organizers can recharge their batteries, a.k.a. have a good night's rest.
[09:16:09.840 --> 09:16:13.360]  Of course, in addition to sleep, the teams will need to continue working on some of
[09:16:13.360 --> 09:16:17.460]  the components in between game shutdown and game start tomorrow morning at 7 a.m.
[09:16:17.460 --> 09:16:18.540]  Pacific and 10 a.m.
[09:16:18.540 --> 09:16:22.260]  Eastern. They've actually been given a firmware image that will help them for
[09:16:22.260 --> 09:16:23.940]  the upcoming Challenge 3.
[09:16:24.600 --> 09:16:26.320]  Thanks for spending your day with us.
[09:16:26.320 --> 09:16:30.000]  Make sure to check out the rest of what's happening at DEFCON, the Aerospace
[09:16:30.000 --> 09:16:32.200]  Village and our Aerospace Workshops.
[09:16:32.200 --> 09:16:35.140]  And I look forward to seeing you all tomorrow morning at 9 a.m.
[09:16:35.140 --> 09:16:36.120]  Pacific, 12 p.m.
[09:16:36.120 --> 09:16:37.860]  Eastern for our next game update.
